Slackwarearm-current ChangeLog (2019-01-26)
Sat Jan 26 08:08:08 UTC 2019
The mini root filesystem for -current has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/
Packages
Rebuilt
- a/bash-5.0.002.000-arm-2.txz
Rebuilt with –libdir=/usr/lib${LIBDIRSUFFIX}. Thanks to RandomTroll. - a/mkinitrd-1.4.11-arm-11.txz
Slackware x86 has added the following script:
/var/lib/pkgtools/setup/setup.01.mkinitrd
to facilitate building an initial RAM disk for your system from within the installer.
This is excluded from the ARM package because we ship a pre-built initrd for
the supported systems. - ap/man-db-2.8.5-arm-2.txz
Comment out all the options in /etc/profile.d/man-db.{csh,sh} and let the
user decide whether or not to choose anything. - x/xdg-utils-1.1.3-arm-2.txz
Fixed xdg-open in LXDE. Thanks to TurboBlaze. - isolinux/*
Upgraded
- a/btrfs-progs-4.20.1-arm-1.txz
- a/kernel-modules-armv7-4.19.17_armv7-arm-1.txz
- a/kernel_armv7-4.19.17-arm-1.txz
- ap/cups-filters-1.22.0-arm-1.txz
- d/Cython-0.29.3-arm-1.txz
- d/kernel-headers-4.19.17-arm-1.txz
- d/meson-0.49.1-arm-1.txz
- d/python-pip-19.0.1-arm-1.txz
- d/rust-1.32.0-arm-1.txz
- d/scons-3.0.4-arm-1.txz
- d/vala-0.42.5-arm-1.txz
- k/kernel-source-4.19.17-arm-1.txz
- l/gcr-3.28.1-arm-1.txz
- l/imagemagick-6.9.10_24-arm-1.txz
- l/libwebp-1.0.2-arm-1.txz
- l/mozilla-nss-3.41.1-arm-1.txz
- n/ModemManager-1.10.0-arm-1.txz
- n/dhcpcd-7.1.0-arm-1.txz
- n/gnutls-3.6.6-arm-1.txz
- n/httpd-2.4.38-arm-1.txz
This release contains security fixes and improvements.
mod_session: mod_session_cookie does not respect expiry time allowing
sessions to be reused. [Hank Ibell]
mod_http2: fixes a DoS attack vector. By sending slow request bodies
to resources not consuming them, httpd cleanup code occupies a server
thread unnecessarily. This was changed to an immediate stream reset
which discards all stream state and incoming data. [Stefan Eissing]
mod_ssl: Fix infinite loop triggered by a client-initiated
renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
later. PR 63052. [Joe Orton]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190
(* Security fix *) - n/nghttp2-1.36.0-arm-1.txz
- x/libdrm-2.4.97-arm-1.txz
- kernels/*