Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware64-current ChangeLog (2017-11-28) ====== ====== Tue Nov 28 06:20:03 UTC 2017 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware64.current>a/eudev-3.2.5-x86_64-1.txz]] * [[slackware64.current>a/kernel-firmware-20171126git-noarch-1.txz]] \\ Remove /lib/firmware/iwlwifi-*-34.ucode until after the next kernel release. * [[slackware64.current>a/usbutils-009-x86_64-1.txz]] * [[slackware64.current>ap/lxc-2.0.9-x86_64-1.txz]] * [[slackware64.current>ap/man-pages-4.14-noarch-1.txz]] * [[slackware64.current>ap/mc-4.8.20-x86_64-1.txz]] * [[slackware64.current>ap/nano-2.9.1-x86_64-1.txz]] * [[slackware64.current>l/QScintilla-2.10.2-x86_64-1.txz]] * [[slackware64.current>l/sip-4.19.6-x86_64-1.txz]] * [[slackware64.current>n/openldap-client-2.4.45-x86_64-1.txz]] * [[slackware64.current>n/samba-4.7.3-x86_64-1.txz]] \\ This is a security release in order to address the following defects: \\ CVE-2017-14746 (Use-after-free vulnerability.) \\ All versions of Samba from 4.0.0 onwards are vulnerable to a use after \\ free vulnerability, where a malicious SMB1 request can be used to \\ control the contents of heap memory via a deallocated heap pointer. It \\ is possible this may be used to compromise the SMB server. \\ CVE-2017-15275 (Server heap memory information leak.) \\ All versions of Samba from 3.6.0 onwards are vulnerable to a heap \\ memory information leak, where server allocated heap memory may be \\ returned to the client without being cleared. \\ For more information, see: \\ https://www.samba.org/samba/security/CVE-2017-14746.html \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14746 \\ https://www.samba.org/samba/security/CVE-2017-15275.html \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15275 \\ (* Security fix *) * [[slackware64.current>x/libva-2.0.0-x86_64-1.txz]] \\ Shared library .so-version bump. * [[slackware64.current>x/mesa-17.2.6-x86_64-1.txz]] * [[slackware64.current>x/xkeyboard-config-2.22-noarch-1.txz]] * [[slackware64.current>xap/gparted-0.30.0-x86_64-1.txz]] * [[slackware64.current>xfce/Thunar-1.6.13-x86_64-1.txz]] ==== Rebuilt ==== * [[slackware64.current>ap/hplip-3.17.11-x86_64-2.txz]] \\ Fixed a few Python scripts that did not have a proper python3 shebang. \\ Thanks to dugan. * [[slackware64.current>kde/konsole-4.14.3-x86_64-3.txz]] \\ Fixed scrollUp behavior. Thanks to Andrzej Telszewski. * [[slackware64.current>l/ffmpeg-3.4-x86_64-2.txz]] \\ Recompiled against libva.so.2.0.0. * [[slackware64.current>n/cyrus-sasl-2.1.26-x86_64-3.txz]] \\ Use /dev/urandom rather than /dev/random to avoid entropy starvation. \\ Thanks to mr.spuratic. * [[slackware64.current>n/dhcpcd-6.11.5-x86_64-2.txz]] \\ Use hostname_short in dhcpcd.conf. Thanks to KewlCat. * [[slackware64.current>n/network-scripts-15.0-noarch-4.txz]] \\ Script cleanups from Jakub Jankowski: \\ netconfig: Add comment to netconfig-generated rc.inet1.conf \\ rc.inet1: Check for iface in /sys/class/net, not /proc/net/dev \\ rc.inet1: Remove unnecessary unset num \\ rc.inet1: Factor DEBUG_ETH_UP logging to a separate function \\ rc.inet1: Use ${array[*]} not ${array[@]} to produce a string \\ rc.inet1: Avoid de-/configuring ifaces with indexes >=MAXNICS \\ rc.inet1: Avoid code duplication by combining case/esac \\ rc.inet1: Add missing 'dev' keyword \\ rc.inet1: Remove unnecessary $(echo) \\ rc.inet1*: Simplify virtif_* code, add note to example config \\ rc.inet1: Test for loopback being "state UNKNOWN" too. \\ rc.inet1: Use simple test (-n/-z) for non-empty/empty \\ rc.inet1: Replace [ test1 -a test2 ] with [ test1 ] && [ test2 ] * [[slackware64.current>xap/xine-lib-1.2.8-x86_64-4.txz]] \\ Recompiled against libva.so.2.0.0. ==== Added ==== * [[slackware64.current>l/talloc-2.1.10-x86_64-1.txz]] * [[slackware64.current>l/tdb-1.3.15-x86_64-1.txz]] * [[slackware64.current>l/tevent-0.9.34-x86_64-1.txz]] * [[slackware64.current>x/intel-vaapi-driver-2.0.0-x86_64-1.txz]] \\ This is the replacement for libva-intel-driver (renamed upstream). * [[slackware64.current>x/libva-utils-2.0.0-x86_64-1.txz]] * [[slackware64.current>testing/packages/php-7.1.12-x86_64-1.txz]] ==== Removed ==== * <del>[[slackware64.current>x/libva-intel-driver-1.7.3-x86_64-1.txz]]</del> {{tag>slackware changelog slackware64-current 2017/11}} news/2017/11/28/slackware64-current-changelog.txt Last modified: 7 years agoby Giuseppe Di Terlizzi Log In