Slackwarearm-current ChangeLog (2019-01-19)
Sat Jan 19 08:08:08 UTC 2019
The mini root filesystem for -current has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/
Packages
Upgraded
- a/aaa_terminfo-6.1_20190112-arm-1.txz
- a/bash-5.0.000.000-arm-1.txz
- a/glibc-zoneinfo-2018i-arm-1.txz
- a/kernel-firmware-20190114_bc65650-noarch-1.txz
- a/kernel-modules-armv7-4.19.16_armv7-arm-1.txz
- a/kernel_armv7-4.19.16-arm-1.txz
Added 'virtio_blk' to the initrd for QEMU's 'Virt' device type.
Thanks to Brenton Earl for his help testing this. - a/lzip-1.21-arm-1.txz
- a/lzlib-1.11-arm-1.txz
- a/util-linux-2.33.1-arm-1.txz
- ap/qpdf-8.3.0-arm-1.txz
- ap/sudo-1.8.27-arm-1.txz
- ap/vim-8.1.0727-arm-1.txz
Fixed vimrc to work with “crontab -e” again now that cron's files have been
moved into /run/cron/. Thanks to Andreas Vögel. - d/ccache-3.6-arm-1.txz
- d/cmake-3.13.3-arm-1.txz
- d/kernel-headers-4.19.16-arm-1.txz
- d/python3-3.6.8-arm-1.txz
- d/subversion-1.11.1-arm-1.txz
- k/kernel-source-4.19.16-arm-1.txz
- l/gtk+3-3.24.3-arm-1.txz
- l/libunwind-1.3.1-arm-1.txz
- l/ncurses-6.1_20190112-arm-1.txz
- l/pyparsing-2.3.1-arm-1.txz
- l/talloc-2.1.15-arm-1.txz
- l/tdb-1.3.17-arm-1.txz
- l/tevent-0.9.38-arm-1.txz
- n/irssi-1.1.2-arm-1.txz
This update addresses bugs including security and stability issues:
A NULL pointer dereference occurs for an “empty” nick.
Certain nick names could result in out-of-bounds access when printing
theme strings.
Crash due to a NULL pointer dereference w hen the number of windows
exceeds the available space.
Use-after-free when SASL messages are received in an unexpected order.
Use-after-free when a server is disconnected during netsplits.
Use-after-free when hidden lines were expired from the scroll buffer.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5882
(* Security fix *) - n/libgpg-error-1.34-arm-1.txz
- n/libmbim-1.18.0-arm-1.txz
- n/libqmi-1.22.0-arm-1.txz
- n/links-2.18-arm-1.txz
- n/php-7.2.14-arm-1.txz
Use –with-password-argon2. PHP now requires the new argon2 package. - x/mesa-18.3.2-arm-1.txz
- x/xterm-343-arm-1.txz
- xap/blueman-2.0.8-arm-1.txz
- xap/vim-gvim-8.1.0727-arm-1.txz
- kernels/*
Rebuilt
- a/sysvinit-2.93-arm-2.txz
Patched to fix version number display. - l/alsa-plugins-1.1.8-arm-2.txz
Remove symlink that breaks audio output. - isolinux/*
Added
- l/argon2-20171227-arm-1.txz
This is a new dependency for the PHP package.