Slackware64-15.0 ChangeLog (2020-01-31)

Fri Jan 31 20:46:25 UTC 2020

  • a/util-linux-2.35.1-x86_64-1.txz
  • ap/sudo-1.8.31-x86_64-1.txz
    This update fixes a security issue:
    In Sudo before 1.8.31, if pwfeedback is enabled in /etc/sudoers, users can
    trigger a stack-based buffer overflow in the privileged sudo process.
    (pwfeedback is a default setting in some Linux distributions; however, it
    is not the default for upstream or in Slackware, and would exist only if
    enabled by an administrator.) The attacker needs to deliver a long string
    to the stdin of getln() in tgetpass.c.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
    (* Security fix *)
  • n/NetworkManager-1.22.6-x86_64-1.txz
  • n/openldap-client-2.4.49-x86_64-1.txz
  • a/zerofree-1.1.1-x86_64-1.txz
    Also queued up for the next installer build. Thanks to bifferos.
  • xfce/thunar-1.8.12-x86_64-1.txz
    Changed package name from “Thunar” to “thunar” to follow upstream's naming.
  • xfce/Thunar-1.8.11-x86_64-1.txz

Fri Jan 31 03:36:03 UTC 2020

  • a/inotify-tools-3.20.2-x86_64-1.txz
  • d/rust-1.41.0-x86_64-1.txz
    Firefox test build succeeded, so I'll consider this update good.
  • n/p11-kit-0.23.20-x86_64-1.txz
  • x/mtdev-1.1.6-x86_64-1.txz
  • d/llvm-9.0.1-x86_64-3.txz
    Added polly-9.0.1 (polyhedral optimizations for LLVM).
  • news/2020/01/31/slackware64-15.0-changelog.txt
  • Last modified: 9 months ago
  • by Giuseppe Di Terlizzi