Slackwarearm-current ChangeLog (2019-10-31)
Thu Oct 31 08:08:08 UTC 2019
The mini root filesystem has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/slack-current-miniroot_30Oct19.tar.xz
Packages
Rebuilt
- a/aaa_elflibs-15.0-arm-14.txz
Upgraded: libglib-2.0.so.0.6200.2, libgmodule-2.0.so.0.6200.2,
libgobject-2.0.so.0.6200.2, libgthread-2.0.so.0.6200.2.
Added: libgomp.so.1.0.0. - x/libglvnd-1.2.0-arm-3.txz
Applied upstream patches to fix EGL/eglplatform.h.
Upgraded
- a/kernel-firmware-20191029_4065643-noarch-1.txz
- ap/hplip-3.19.10-arm-1.txz
- ap/sudo-1.8.29-arm-1.txz
- d/python-setuptools-41.6.0-arm-1.txz
- d/subversion-1.13.0-arm-1.txz
- l/harfbuzz-2.6.4-arm-1.txz
- n/ModemManager-1.10.8-arm-1.txz
- n/openvpn-2.4.8-arm-1.txz
- n/samba-4.11.2-arm-1.txz
This update fixes bugs and these security issues:
Client code can return filenames containing path separators.
Samba AD DC check password script does not receive the full password.
User with “get changes” permission can crash AD DC LDAP server via dirsync.
For more information, see:
https://www.samba.org/samba/security/CVE-2019-10218.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10218
https://www.samba.org/samba/security/CVE-2019-14833.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14833
https://www.samba.org/samba/security/CVE-2019-14847.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14847
(* Security fix *) - t/xfig-3.2.7b-arm-1.txz