Slackwarearm-14.0 ChangeLog (2012-07-20)
Fri Jul 20 07:36:22 UTC 2012
The mini root filesystem for -current has been updated.
ftp://ftp.armedslack.org/armedslack/armedslack-devtools/minirootfs/
Upgrade notes for this batch:
[1] We have switched to using openssl-1.0.1c, which changes the major number
for the crypto and ssl libraries from .0 to .1, meaning everything linked
with the previous version of openssl will need to be recompiled.
[2] To upgrade this batch, rather than logging in via SSH, I'd suggest logging in
from a serial line (easily achieved for most ARM devices) or telnet
(if you're on a secure LAN). This is to avoid any problems with SSH when you
upgrade OpenSSL.
Whether you perform a manual or automated upgrade, begin with:
# upgradepkg a/openssl-solibs*t?z n/openssl-*t?z
If you're using slackpkg to upgrade:
in /etc/slackpkg/slackpkg.conf, set: DOWNLOAD_ALL=on
# upgradepkg n/wget-*t?z
then continue using slackpkg as you would normally.
Once the upgrade is complete, reboot the system to bring it to a steady state.
Packages
Upgraded
- a/lvm2-2.02.96-arm-1.tgz
Removed static libraries.
Fixed /lib/udev/rules.d/13-dm-disk.rules.
Fixed broken /usr/lib64/libdevmapper-event-lvm2raid.so symlink.
Thanks to Patrick Verner. - a/mkinitrd-1.4.7-arm-1.tgz
Thanks to Robby Workman.
Added mdmon to initrd if RAID=1. Thanks to Marek Wodzinski.
Add firmware needed by modules. Thanks to ecd102 on LQ.
According to rworkman, udev is indeed required now in early boot for any
system using an initrd, so we'll set UDEV=1 in mkinitrd (leaving -u as a
no-op). This should clear up the issues with the /init script that
expected udevadm to be present.
Use ldconfig -l to ensure all shared libraries have the correct symlinks.
Thanks to Olek on LQ.
Issue /sbin/ldconfig differently to avoid linking to old library versions
that might be present on the system.
Added support for loading gzipped kernel modules with kmod (which replaces
the old 'modprobe' from the 'module-init-tools' package).
Thanks to Stuart Winter. - a/udev-175-arm-1.tgz
Applied a patch to /lib/udev/write_net_rules to ensure no duplicate MAC entries
are added to the /etc/udev/rules.d/70-persistent-net.rules file, as this was
causing my machine (with only one NIC!) to have its eth0 renamed as eth1.
Thanks to Robby Workman for finding the work-around. - a/util-linux-2.21.2-arm-1.tgz
Use –enable-libmount-mount, not –enable-new-mount. The latter option
breaks umount for users, even when /etc/fstab should allow it.
Thanks to Chris Vine for the bug report. - l/libexif-0.6.21-arm-1.tgz
This update fixes a number of remotely exploitable issues in libexif
with effects ranging from information leakage to potential remote
code execution.
For more information, see:
http://sourceforge.net/mailarchive/message.php?msg_id=29534027
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2836
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2837
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2840
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2841
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2845
(* Security fix *) - l/seamonkey-solibs-2.11-armv7a-1.tgz
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html
(* Security fix *)
Note: as with the rest of the Mozilla suite, this package no longer runs
on armv5 machines. - n/alpine-2.02-arm-1.tgz
Now using the re-alpine sources. - n/imapd-2.02-arm-1.tgz
Now using the re-alpine sources. - n/php-5.4.4-arm-1.tgz
This release fixes a weakness in the DES implementation of crypt
and a heap overflow issue in the phar extension.
(* Security fix *) - n/wget-1.13.4-arm-1.tgz
Prefer linking with OpenSSL, since the license allows it.
This is less of a moving target than GnuTLS. - xap/mozilla-firefox-14.0.1-armv7a-1.tgz
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/firefox.html
(* Security fix *) - xap/mozilla-thunderbird-14.0-armv7a-1.tgz
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *) - xap/pidgin-2.10.6-arm-1.tgz
Link with Mozilla NSS rather than GnuTLS.
Fixes a security issue for users of MXit: Incorrect handing of inline
images in incoming instant messages can cause a buffer overflow and in
some cases can be exploited to execute arbitrary code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3374
(* Security fix *) - xap/seamonkey-2.11-armv7a-1.tgz
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html
(* Security fix *)
Removed nss.pc and nspr.pc symlinks.
Note: as with the rest of the Mozilla suite, this package no longer runs
on armv5 machines. I've been holding off upgrading Seamonkey for some time
since other packages linked against its libraries; but with the addition of the
mozilla-nss package, we can upgrade to the latest Seamonkey and keep up to date
with the security releases. As this was the last Mozilla type Web Browser
available, if there's any demand I will recompile Seamonkey-2.9.1
(the last version that works on armv5) and put it into /pasture.
Rebuilt
- a/ntfs-3g-2012.1.15-arm-2.tgz
Made /bin/ntfs-3g setuid root, because otherwise it refuses to allow
non-root users to mount volumes now, even if /etc/fstab allows it. - a/sysvinit-scripts-1.2-noarch-16.tgz
Changed /etc/inittab to clear consoles after logout (actually before
starting /bin/login from agetty *except* for the first console with the boot
messages. This seems a good compromise, and also prevents getting locked
out of the machine if someone drops back to an earlier version of util-linux
for some reason. - ap/rpm-4.8.1-arm-3.tgz
Rebuilt against the new 'mozilla-nss' package rather than 'seamonkey'. - l/fribidi-0.19.2-arm-2.tgz
Patched headers for compatibility with the new glib2 package.
Thanks to Darrell Anderson. - l/hicolor-icon-theme-0.12-noarch-2.tgz
Don't update (create) icon theme caches unless they exist already.
Once created, these icon registries cause problems unless they are
rebuilt every time new icons are added. If you have any
icon-theme.cache files under /usr/share/icons, it would be a good
idea to get rid of them (unless you're planning to handle keeping
them up to date). - l/libvisual-0.4.0-arm-2.tgz
Patched header for compatibility with the new glib2 package.
Thanks to Darrell Anderson. - xap/MPlayer-1.1_20120701-arm-2.tgz
Don't update (create) icon theme caches unless they exist already.
Once created, these icon registries cause problems unless they are
rebuilt every time new icons are added. If you have any
icon-theme.cache files under /usr/share/icons, it would be a good
idea to get rid of them (unless you're planning to handle keeping
Upgraded.
Added.
- l/libyaml-0.1.4-arm-1.tgz
Thanks to Vincent Batts.
Removed
l/wv2-0.4.2-arm-1.tgz
Calligra doesn't require this (it bundles a forked version), nor does
anything else in Slackware. It is unmaintained upstream and requires
patching to compile with the recent glib2. Perhaps SlackBuilds.org
should take it over? If so, change all occurances of:
#include <glib/*> to #include <glib.h>x/intel-gpu-tools-1.0.2-arm-1.tgz
This requires libdrm_intel.so.1 which is no longer provided by the
x/libdrm package (as the package refuses to build Intel support on ARM).
Added
- l/mozilla-nss-3.13.5-arm-1.tgz
Added Mozilla nspr-4.9.1 and nss-3.13.5.