[FYI] slackware64-current package update log

grissiom · 发表于 2009-7-19 08:41:47

Sat Jul 18 16:04:24 CDT 2009
x/pixman-0.15.10-x86_64-2.txz:  Reverted to pixman-0.15.10.  There seem to
  be problems with all the newer versions we have tested, for example broken
  compositing, or missing icons in the KDE4 tray.

grissiom · 发表于 2009-7-21 18:45:24

Sat Jul 18 20:17:35 CDT 2009
a/pkgtools-13.0-noarch-2.tgz: Rebuilt. Patched installpkg to fix handling
of (some) broken packages. Thanks to Jan Rafaj

grissiom · 发表于 2009-7-26 18:26:34

Fri Jul 24 19:43:51 CDT 2009
a/cxxlibs-6.0.10-x86_64-1.txz:  Upgraded.  Replaced libstdc++.so.6.0.9 with
  libstdc++.so.6.0.10, and added libstdc++.so.5.0.7, which is needed by some
  commercial software.  Thanks to Fred Emmott for the build script help.
ap/dc3dd-6.12.3-x86_64-1.txz:  Added.  This is a version of dd that has been
  patched to include a number of features useful for computer forensics.
  Thanks to Barry J. Grundy for the build script.

grissiom · 发表于 2009-7-31 09:09:32

Wed Jul 29 23:10:01 CDT 2009
n/bind-9.4.3_P3-x86_64-1.txz:  Upgraded.
  This BIND update fixes a security problem where a specially crafted
  dynamic update message packet will cause named to exit resulting in
  a denial of service.
  An active remote exploit is in wide circulation at this time.
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0696
https://www.isc.org/node/479
  (* Security fix *)

grissiom · 发表于 2009-8-1 21:46:45

Sat Aug  1 00:51:37 CDT 2009
a/shadow-4.0.3-x86_64-18.txz:  Rebuilt.  In adduser, adjusted the search of
  /etc/passwd to exclude the NIS inclusion string.
  Thanks to Dominik L. Borkowski.
ap/linuxdoc-tools-0.9.56-x86_64-4.txz:  Rebuilt.  Upgraded a number of
  component packages.
  We also need some help debugging a problem with this package.
  For details please see:
  /usr/doc/linuxdoc-tools-0.9.56/Slackware-ChangeLog.txt
ap/slackpkg-2.80.2-noarch-3.tgz:  Upgraded.  Thanks to Piter Punk.
l/hal-0.5.11-x86_64-6.txz:  Rebuilt.  Rebuilt with some backported patches
  from upstream to fix some bugs.
  Patched the 10-keymap.fdi with comments and examples for configuring
  keyboard layouts, both with and without input hotplugging.
  Important changes to /etc/dbus-1/system.d/hal.conf, so be sure to move
  the new config into place.
  Thanks to Robby Workman.
l/hal-info-20090716-noarch-1.txz:  Upgraded.

吼吼~ 测试党又有活干了~

ginkgo · 发表于 2009-8-3 12:53:24

Sun Aug  2 16:25:44 CDT 2009
ap/linuxdoc-tools-0.9.56-x86_64-5.txz:  Rebuilt.  Added a symlink to
  isogrk4.ent that fixes the problems that we mentioned earlier.
d/git-1.6.4-x86_64-1.txz:  Upgraded.
n/httpd-2.2.12-x86_64-1.txz:  Upgraded.
  This update fixes some security issues (from the CHANGES file):
*) SECURITY: CVE-2009-1891 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_deflate or other
modules, by forcing the server to consume CPU time in compressing a
large file after a client disconnects.  PR 39605.
[Joe Orton, Ruediger Pluem]
*) SECURITY: CVE-2009-1195 (cve.mitre.org)
Prevent the "Includes" Option from being enabled in an .htaccess
file if the AllowOverride restrictions do not permit it.
[Jonathan Peatfield <j.s.peatfield damtp.cam.ac.uk>, Joe Orton,
   Ruediger Pluem, Jeff Trawick]
*) SECURITY: CVE-2009-1890 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_proxy in a
reverse proxy configuration, where a remote attacker can force a
proxy process to consume CPU time indefinitely.  [Nick Kew, Joe Orton]
*) SECURITY: CVE-2009-1191 (cve.mitre.org)
mod_proxy_ajp: Avoid delivering content from a previous request which
failed to send a request body. PR 46949 [Ruediger Pluem]
*) SECURITY: CVE-2009-0023, CVE-2009-1955, CVE-2009-1956 (cve.mitre.org)
The bundled copy of the APR-util library has been updated, fixing three
different security issues which may affect particular configurations
and third-***** modules.
  These last three CVEs were addressed in Slackware previously with an
  update to new system apr and apr-util packages.
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1191
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0023
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1955
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1956
  (* Security fix *)
n/irssi-0.8.14-x86_64-1.txz:  Upgraded.
+--------------------------+

grissiom · 发表于 2009-8-6 19:32:29

Thu Aug  6 00:48:30 CDT 2009
Hi folks!  We're going to call this set of updates RC2.  There are still
README files to be handled (that's the nature of documentation, I guess), as
well as some other things remaining on the TODO list, but X seems pretty
stable now, and it seems like a release soon would be in order so that we
can march right back into development territory with -current again soon.  :-)
Enjoy, and let us know about any problems you run into!
ap/mysql-5.0.84-x86_64-1.txz:  Upgraded.
kde/kdebase-runtime-4.2.4-x86_64-2.txz:  Rebuilt.
  Applied patchset 969192 to fix improper clipping of text labels under icons
  (such as in KMail).  Thanks to Andrzej Szelachowski.
l/jre-6u15-x86_64-1.txz:  Upgraded.
  Upgraded to Java(TM) 2 Platform Standard Edition Runtime Environment
  Version 6.0 update 15.
l/qt-r1006620-x86_64-1.txz:  Upgraded to qt-copy r1006620 from svn.
  We know about qt-copy.git and plan to adopt it sometime after the 13.0
  release, but would like to stick to close to the same Qt branch that
  KDE 4.2.4 was developed on for now.
n/fetchmail-6.3.11-x86_64-1.txz:  Upgraded.
  This update fixes an SSL NUL prefix impersonation attack through NULs in a
  part of a X.509 certificate's CommonName and subjectAltName fields.
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2666
  (* Security fix *)
n/network-scripts-13.0-noarch-1.txz:  Upgraded.  Added new options to the
  rc.inet1.conf file to adjust debugging level, or to turn off ipv4ll
  (zeroconf) IP address assignment.  Thanks to Eric Hameleers.
x/glew-1.5.1-x86_64-1.txz:  Added.  Needed by the Mesa demos.
x/libICE-1.0.5-x86_64-2.txz:  Rebuilt.
x/libX11-1.2.2-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.12-x86_64-1.txz:  Upgraded.
x/mesa-7.5-x86_64-1.txz:  Upgraded.
x/pixman-0.15.18-x86_64-1.txz:  Upgraded.
x/renderproto-0.11-noarch-1.txz:  Upgraded.
x/rstart-1.0.3-x86_64-1.txz:  Upgraded.
x/setxkbmap-1.1.0-x86_64-1.txz:  Upgraded.
x/xf86-input-evdev-2.2.4-x86_64-1.txz:  Upgraded.
x/xf86-input-synaptics-1.1.3-x86_64-1.txz:  Upgraded.
x/xf86-video-apm-1.2.2-x86_64-1.txz:  Upgraded.
x/xf86-video-ast-0.89.9-x86_64-1.txz:  Upgraded.
x/xf86-video-cirrus-1.3.2-x86_64-1.txz:  Upgraded.
x/xf86-video-glint-1.2.4-x86_64-1.txz:  Upgraded.
x/xf86-video-i128-1.3.3-x86_64-1.txz:  Upgraded.
x/xf86-video-i740-1.3.2-x86_64-1.txz:  Upgraded.
x/xf86-video-intel-2.8.0-x86_64-1.txz:  Upgraded.
x/xf86-video-mach64-6.8.2-x86_64-1.txz:  Upgraded.
x/xf86-video-mga-1.4.11-x86_64-1.txz:  Upgraded.
x/xf86-video-neomagic-1.2.4-x86_64-1.txz:  Upgraded.
x/xf86-video-r128-6.8.1-x86_64-1.txz:  Upgraded.
x/xf86-video-s3-0.6.3-x86_64-1.txz:  Upgraded.
x/xf86-video-s3virge-1.10.4-x86_64-1.txz:  Upgraded.
x/xf86-video-savage-2.3.1-x86_64-1.txz:  Upgraded.
x/xf86-video-sis-0.10.2-x86_64-1.txz:  Upgraded.
x/xf86-video-sisusb-0.9.3-x86_64-1.txz:  Upgraded.
x/xf86-video-tdfx-1.4.3-x86_64-1.txz:  Upgraded.
x/xf86-video-vesa-2.2.1-x86_64-1.txz:  Upgraded.
x/xf86-video-voodoo-1.2.3-x86_64-1.txz:  Upgraded.
x/xfs-1.1.0-x86_64-1.txz:  Upgraded.
x/xkbcomp-1.1.0-x86_64-1.txz:  Upgraded.
x/xorg-server-1.6.3-x86_64-1.txz:  Upgraded.
x/xorg-server-xephyr-1.6.3-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-1.6.3-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-1.6.3-x86_64-1.txz:  Upgraded.
x/xtrans-1.2.4-noarch-1.txz:  Upgraded.
  Huge thanks to Robby Workman for preparing these X updates and getting
  people to help test them!  The new libdrm, mesa, xorg-server, and
  the new Intel driver seem especially improved.  :-)
xap/xfce-4.6.1-x86_64-5.txz:  Rebuilt.  Upgraded to Terminal-0.4.0 and added
  some missing icons.  Thanks to Robby Workman.
extra/jdk-6/jdk-6u15-x86_64-1.txz:  Upgraded.
  Upgraded to Java(TM) 2 Platform Standard Edition Development Kit
  Version 6.0 update 15.

grissiom · 发表于 2009-8-7 17:28:00

Fri Aug  7 01:26:38 CDT 2009
d/subversion-1.6.4-x86_64-1.txz:  Upgraded.
  Fixed heap overflow vulnerability on server and client.
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2411
http://subversion.tigris.org/security/CVE-2009-2411-advisory.txt
  (* Security fix *)
l/apr-1.3.8-x86_64-1.txz:  Upgraded.
  Fix overflow in pools and rmm, where size alignment was taking place.
  [Matt Lewis <mattlewis@google.com>, Sander Striker]
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2412
  (* Security fix *)
l/apr-util-1.3.9-x86_64-1.txz:  Upgraded.
  Fix overflow in rmm, where size alignment was taking place.
  [Matt Lewis <mattlewis@google.com>, Sander Striker]
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2412
  (* Security fix *)
l/qt-r1008078-x86_64-1.txz:  Upgraded.
  Added some missing symlinks to binaries and pkgconfig files.
  Thanks to Heinz Wiesinger for the build script improvements!
n/httpd-2.2.12-x86_64-2.txz:  Rebuilt.
  Recompiled against the new apr and apr-util.  This allows external modules
  to be built without having to edit the new apr/apr-util version numbers into
  the httpd config files.

duangw · 发表于 2009-8-12 10:39:08

Tue Aug 11 01:04:25 CDT 2009
a/etc-13.0-noarch-1.txz:  Upgraded.
  Added root to power, netdev, and scanner groups in /etc/group.
a/pciutils-3.1.3-x86_64-1.txz:  Upgraded.
a/rpm2tgz-1.1-x86_64-1.txz:  Upgraded.  Make .tgz with makepkg, not tar.
ap/man-1.6f-x86_64-2.txz:  In man.conf, change nroff from using -Tlatin1 to
  using -mandoc.  Thanks to Ricardo Garcia.
ap/man-pages-3.22-noarch-1.txz:  Upgraded.
d/guile-1.8.7-x86_64-1.txz:  Upgraded.
kde/kaudiocreator-r1008583-x86_64-1.txz:  Upgraded.
kde/kdelibs-4.2.4-x86_64-3.txz:  Rebuilt.  Patched kdesu to fix NOPASS option.
  Thanks to Piter Punk!
l/imlib-1.9.15-x86_64-5.txz:  Rebuilt.  Fixed doc directory perms.
l/qt-r1008952-x86_64-1.txz:  Upgraded.
  Fixed symlink to QtDesignerComponents.pc.  Thanks to oneforall.
n/httpd-2.2.13-x86_64-1.txz:  Upgraded.
  This is a bugfix release.  It also upgrades the internal versions of apr and
  apr-util to address CVE-2009-2412, but Slackware uses the system versions of
  these libraries which have already been upgraded.
n/mailx-12.4-x86_64-1.txz:  Upgraded.
n/netatalk-2.0.4-x86_64-2.txz:  Rebuilt.
  Don't install rc.atalk as executable by default.
t/transfig-3.2.5a-x86_64-1.txz:  Upgraded.
t/xfig-3.2.5b-x86_64-1.txz:  Upgraded.
x/xorg-cf-files-1.0.2-noarch-3.txz:  Rebuilt.  Fixed LibDir in X11.tmpl.
xap/gnuplot-4.2.5-x86_64-1.txz:  Upgraded.
xap/xlockmore-5.28-x86_64-1.txz:  Upgraded.
+--------------------------+

duangw · 发表于 2009-8-19 21:02:44

Tue Aug 18 18:50:46 CDT 2009
  Patched kernels and kernel packages for Linux 2.6.29.6 to address
  a bug in proto_ops structures which could allow a user to use the
  kernel sendpage operation to execute arbitrary code in page zero.
  This could allow local users to gain escalated privileges.
  This flaw was discovered by Tavis Ormandy and Julien Tinnes of the
  Google Security Team.
  For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2692
  In addition, these kernels change the CONFIG_DEFAULT_MMAP_MIN_ADDR
  kernel config option value to 4096, which should prevent the execution
  of arbitrary code by future NULL dereference bugs that might be found
  in the kernel.  If you are compiling your own kernel, please check this
  option in your .config.  If it is set to =0, you may wish to edit it
  to 4096 (or some other value > 0) and then reconfigure, or the kernel
  will not have default protection against zero page attacks from
  userspace.
  (* Security fix *)
a/kernel-firmware-2.6.29.6-noarch-2.txz:  Rebuilt.
a/kernel-generic-2.6.29.6-x86_64-2.txz:  Rebuilt.
  Patched CVE-2009-2692, changed default vm.mmap_min_addr to 4096.
  (* Security fix *)
a/kernel-huge-2.6.29.6-x86_64-2.txz:  Rebuilt.
  Patched CVE-2009-2692, changed default vm.mmap_min_addr to 4096.
  (* Security fix *)
a/kernel-modules-2.6.29.6-x86_64-2.txz:  Rebuilt.
a/pkgtools-13.0-noarch-3.tgz:  Rebuilt.
  Fixed hardcoded gzip in installpkg --warn.  Thanks to Mathieu Bouillaguet.
  Fixed upgradepkg to reject invalid extensions.  Thanks to Andrew Psaltis.
ap/foomatic-filters-4.0.2-x86_64-1.txz:  Upgraded.
d/kernel-headers-2.6.29.6-x86-2.txz:  Rebuilt.
k/kernel-source-2.6.29.6-noarch-2.txz:  Rebuilt.
  Patched CVE-2009-2692, changed default vm.mmap_min_addr to 4096.
  (* Security fix *)
l/libzip-0.9-x86_64-2.txz:  Rebuilt.  Get rid of hardlinked man pages.
n/pinentry-0.7.6-x86_64-1.txz:  Upgraded.  Thanks to Stuart Winter.
xap/x11-ssh-askpass-1.2.4.1-x86_64-1.txz:  Added.
  Thanks to Vincent Batts for the build script.
isolinux/initrd.img:  Rebuilt.
  Patched CVE-2009-2692, changed default vm.mmap_min_addr to 4096.
  (* Security fix *)
kernels/*:  Rebuilt.
  Patched CVE-2009-2692, changed default vm.mmap_min_addr to 4096.
  (* Security fix *)
usb-and-pxe-installers/:  Rebuilt.
  Patched CVE-2009-2692, changed default vm.mmap_min_addr to 4096.
  (* Security fix *)
+--------------------------+
Fri Aug 14 15:12:05 CDT 2009
a/aaa_elflibs-13.0-x86_64-1.txz:  Upgraded.
a/mkinitrd-1.3.4-x86_64-3.txz:  Rebuilt.  Fixed quoting of "${MODULE_LIST}"
a/usbutils-0.82-x86_64-2.txz:  Rebuilt.  Updated usb.ids, removed usb.ids.gz.
ap/man-pages-3.22-noarch-2.txz:  Rebuilt.  Fixed missing part of doinst.sh.
kde/koffice-2.0.2-x86_64-1.txz:  Upgraded.
kdei/koffice-l10n-*-2.0.2-noarch-1.txz:
  Upgraded to KOffice 2.0.2 l10n packages.
l/jre-6u16-x86_64-1.txz:  Upgraded.
  Upgraded to Java(TM) 2 Platform Standard Edition Runtime Environment
  Version 6.0 update 16.
n/curl-7.19.6-x86_64-1.txz:  Upgraded.
  This update fixes a security issue where a zero byte embedded in an SSL
  or TLS certificate could fool cURL into validating the security of a
  connection to a system that the certificate was not issued for.  It has
  been reported that at least one Certificate Authority allowed such
  certificates to be issued.
  For more information, see:
http://curl.haxx.se/docs/security.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417
  (* Security fix *)
n/elm-2.5.8-x86_64-3.txz:  Rebuilt.  Fixed mailermode.
t/transfig-3.2.4-x86_64-2.txz:  Reverted.  This version is matched to
  xfig-3.2.4.
t/xfig-3.2.4-x86_64-4.txz:  Reverted.  This is due to xfig-3.2.5b not working
  correctly.  .fig files will load, but making any changes causes xfig to
  hang consuming 100% CPU.  We couldn't find a fix, and honestly RC2 just
  wasn't a good time to upgrade xfig (3.2.4 also required many patches to
  work right).  Sorry, but we'll look at this again in the next -current.
extra/aspell-word-lists/aspell-nb-0.50.1_0-noarch-4.txz:  Added.
extra/jdk-6/jdk-6u16-x86_64-1.txz:  Upgraded.
  Upgraded to Java(TM) 2 Platform Standard Edition Development Kit
  Version 6.0 update 16.
extra/wicd/wicd-1.6.2-x86_64-2.txz:  Rebuilt.
  Fixed a problem with hidden networks.  Thanks to Robby Workman.
isolinux/initrd.img:  Rebuilt.
usb-and-pxe-installers/:  Rebuilt.
+--------------------------+

		自动登录	找回密码
密码			注册