Slackwarearm-current ChangeLog (2018-06-14)
Thu Jun 14 08:08:08 UTC 2018
Packages
Rebuilt
- a/dcron-4.5-arm-3.txz
Added init script and defaults file.
Moved TMPDIR to /run/cron.
Thanks to Robby Workman and shasta. - a/etc-15.0-arm-4.txz
Don't hardcode passwd/shadow/group additions in doinst.sh - get them from
the .new files.
ARM-only changes:
etc/securetty.new: Add the following serial console device names to support
Firefly-RK3288
ttyFIQ0
ttyFIQ1
ttyFIQ2
ttyFIQ3 - a/glibc-solibs-2.27-arm-4.txz
Don't restart init in the install script, let rc.6 handle it. - a/libcgroup-0.41-arm-3.txz
Apply all post 0.41 patches from git, including one for an infinite loop
bug that causes 100% CPU usage on one core. Thanks to chris.willing. - a/pkgtools-15.0-noarch-12.txz
setup.services: add support for rc.atd and rc.crond
installpkg: Use terse mode if TERSE=0 is set in the environment (this already
works for removepkg and upgradepkg). This allows using terse mode in other
tools that use the pkgtools (such as slackpkg with: TERSE=0 slackpkg).
Thanks to Xsane. - a/sysvinit-scripts-2.1-noarch-8.txz
rc.S: don't start rc.haveged in this script - move it to rc.M.
rc.M: start rc.haveged after seeding /dev/urandom in rc.S, and after
starting syslogd, klogd, and udev in rc.M.
rc.M: start rc.rndg (we don't ship it or rng-tools) after udev.
H. Peter Anvin says that it's fine to run both haveged and rndg,
and I trust his opinion on that.
Thanks to GazL.
rc.6: restart init when shutting down - this prevents it from holding file
handles to removed/upgraded versions of the glibc shared libraries which
would interfere with shutdown.
rc.K: use full path to telinit
rc.M: start rc.atd and rc.crond
rc.M: don't remove cron tempfiles (moved to /run/cron)
rc.S: start rc.haveged - ap/at-3.1.20-arm-4.txz
Fixed wrong variable in rc.atd. Thanks to upnort.
Added init script and defaults file. - l/dconf-0.26.1-arm-3.txz
Eliminate install script noise. - l/dconf-editor-3.26.2-arm-3.txz
Eliminate install script noise. - l/glibc-2.27-arm-4.txz
Don't restart init in the install script, let rc.6 handle it. - l/glibc-i18n-2.27-arm-4.txz
- l/glibc-profile-2.27-arm-4.txz
- x/wqy-zenhei-font-ttf-0.8.38_1-noarch-2.txz
Try to avoid overriding other font choices unless lang = zh-cn or zh-sg. - isolinux/*
Added
- a/haveged-1.9.2-arm-1.txz
Upgraded
- a/kernel-firmware-20180606_d114732-noarch-1.txz
- a/kernel-modules-armv7-4.16.15_armv7-arm-1.txz
- a/kernel_armv7-4.16.15-arm-1.txz
- ap/hplip-3.18.6-arm-1.txz
- d/kernel-headers-4.16.15-arm-1.txz
- k/kernel-source-4.16.15-arm-1.txz
+CONFIG_NFS_V2=m - l/LibRaw-0.18.12-arm-1.txz
This update fixes bugs and security issues, including:
parse_qt: possible integer overflow
reject broken/crafted NOKIARAW files
recover read position if TIFF/EXIF tag is too long
possible infinite loop in parse_minolta()
possible stack overrun in X3F parser
out of bounds read in X3F parser
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14265
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10528
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10529
(* Security fix *) - n/iproute2-4.17.0-arm-1.txz
- n/libgcrypt-1.8.3-arm-1.txz
Use blinding for ECDSA signing to mitigate a novel side-channel attack.
For more information, see:
https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0495
(* Security fix *) - x/xkbcomp-1.4.2-arm-1.txz
- kernels/*