[FYI] slackware 12.2 -current package update log

duangw

Tue Jun 16 17:50:30 CDT 2009
a/aaa_base-13.0-noarch-1.txz:  Rebuilt.  Updated slackware-version.
a/e2fsprogs-1.41.6-i486-1.txz:  Upgraded.
a/ed-1.3-i486-1.txz:  Upgraded.
a/file-5.03-i486-1.txz:  Upgraded.
a/findutils-4.4.2-i486-1.txz:  Upgraded.
a/jfsutils-1.1.14-i486-1.txz:  Upgraded.
a/ntfs-3g-2009.4.4-i486-1.txz:  Upgraded.
a/usbutils-0.82-i486-1.txz:  Upgraded.
a/xfsprogs-3.0.1-i486-1.txz:  Upgraded.
ap/dmapi-2.2.10-i486-1.txz:  Upgraded.
ap/man-pages-3.21-noarch-1.txz:  Upgraded.
ap/sqlite-3.6.14.2-i486-1.txz:  Upgraded.
ap/xfsdump-3.0.1-i486-1.txz:  Upgraded.
d/git-1.6.3.2-i486-1.txz:  Upgraded.
d/m4-1.4.13-i486-1.txz:  Upgraded.
d/subversion-1.6.2-i486-1.txz:  Upgraded.
  Thanks to Robby Workman and Vincent Batts for work done on enabling the
  bindings for Python, perl, and Ruby.
kde/kdelibs-4.2.4-i486-2.txz:  Rebuilt.  Patched popupapplet.cpp to fix
  plasmaboard, a virtual keyboard for plasma.
l/apr-1.3.5-i486-1.txz:  Upgraded.
l/apr-util-1.3.7-i486-1.txz:  Upgraded.
  Fix underflow in apr_strmatch_precompile.
  Fix a denial of service attack against the apr_xml_* interface
  using the "billion laughs" entity expansion technique.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0023
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1955
  (* Security fix *)
l/neon-0.28.4-i486-1.txz:  Upgraded.
l/sdl-1.2.13-i486-4.txz:  Upgraded.  Use SDL_image-1.2.7, and compile SDL
  without esd, as linking to esd breaks audio within VirtualBox.  Thanks to
  Luigi Trovato for the bug report.  Also, compile without arts support.
l/seamonkey-solibs-1.1.16-i486-2.txz:  Added.  This is a subset of the
  shared libraries from the seamonkey package used for runtime support of
  programs (such as rpm) on machines without X, or applications for X.
n/bluez-utils-3.36-i486-6.txz:  Rebuilt.  Edited rc.bluetooth to start hidd
  before any other bluetooth service.  This avoids an address conflict that
  can cause devices to fail to reconnect if the connection is lost.
  Thanks to Heinz Wiesinger.
n/iptables-1.4.3.2-i486-1.txz:  Upgraded.
n/iw-0.9.14-i486-1.txz:  Upgraded.
n/lftp-3.7.14-i486-1.txz:  Upgraded.
xap/mozilla-firefox-3.0.11-i686-1.txz:
  Upgraded to firefox-3.0.11.
  This fixes some security issues.
  For more information, see:
    http://www.mozilla.org/security/ ... ties/firefox30.html
  (* Security fix *)
xap/seamonkey-1.1.16-i486-2.txz:  Rebuilt.
xap/xfce4-power-manager-0.6.6-i486-1.txz:  Upgraded.
xap/xine-lib-1.1.16.3-i686-6.txz:  Rebuilt.  Use i686 arch, not i486.
extra/tightvnc/tightvnc-1.3.10-i486-1.txz:  Added.
+--------------------------+

smzz

Post by duangw;1998657
Tue Jun 16 17:50:30 CDT 2009
a/aaa_base-13.0-noarch-1.txz:  Rebuilt.  Updated slackware-version.

这会不会预示着新版本就要发布了?

grissiom

Post by smzz;1998669
这会不会预示着新版本就要发布了?

有道理～～～

ginkgo

1. Wed Jun 17 22:11:29 CDT 2009
2. a/cryptsetup-1.0.6-i486-2.txz:  Rebuilt.  Fixed cryptsetup to use
3.   "udevadm settle" instead of the deprecated "udevsettle".
4.   Thanks to Robby Workman.
5. a/kernel-firmware-2.6.29.5-noarch-1.tgz:  Upgraded to Linux 2.6.29.5 firmware.
6. a/kernel-generic-2.6.29.5-i486-1.tgz:  Upgraded to Linux 2.6.29.5.
7. a/kernel-generic-smp-2.6.29.5_smp-i686-1.tgz:  Upgraded to Linux 2.6.29.5.
8. a/kernel-huge-2.6.29.5-i486-1.tgz:  Upgraded to Linux 2.6.29.5.
9. a/kernel-huge-smp-2.6.29.5_smp-i686-1.tgz:  Upgraded to Linux 2.6.29.5.
10. a/kernel-modules-2.6.29.5-i486-1.tgz:  Upgraded to Linux 2.6.29.5 modules.
11. a/kernel-modules-smp-2.6.29.5_smp-i686-1.tgz:
12.   Upgraded to Linux 2.6.29.5 modules.
13. a/pkgtools-13.0-noarch-1.tgz:  Bumped version number.
14. d/kernel-headers-2.6.29.5_smp-x86-1.tgz:  Upgraded to Linux 2.6.29.5 headers.
15. k/kernel-source-2.6.29.5_smp-noarch-1.tgz:  Upgraded to Linux 2.6.29.5 source.
16. l/jre-6u14-i586-1.txz:  Upgraded to Java(TM) 2 Platform Standard Edition
17.   Runtime Environment Version 6.0 update 14.
18. n/iproute2-2.6.29_1-i486-2.txz:  Rebuilt.  This needed a recompile
19.   against the new iptables.  Thanks to Lars Lindqvist.
20. extra/jdk-6/jdk-6u14-i586-1.txz:  Upgraded to Java(TM) 2 Platform Standard
21.   Edition Development Kit Version 6.0 update 14.
22. extra/linux-2.6.29.5-nosmp-sdk/:  Regenerated SMP to no-SMP kernel source patch.
23. isolinux/initrd.img:  Rebuilt.
24. kernels/*:  Rebuilt.
25. usb-and-pxe-installers/:  Rebuilt.
26. +--------------------------+

复制代码

wangjunhuashuo

Thu Jun 18 21:21:04 CDT 2009
n/samba-3.2.12-i486-1.txz:  Upgraded.
t/xfig-3.2.4-i486-4.txz:  Rebuilt.  This needed a recompile against glibc
  to fix crashes.  Thanks to Petri Kaukasoina for the bug report.

ginkgo

changelog

Mon Jun 22 22:24:01 CDT 2009
a/quota-3.17-i486-1.txz:  Upgraded.
a/sharutils-4.7-i486-1.txz:  Upgraded.
ap/lm_sensors-3.1.1-i486-1.txz:  Upgraded.
ap/mc-20090621_git-i486-1.txz:  Upgraded.
ap/most-5.0.0a-i486-1.txz:  Upgraded.
l/exiv2-0.18.1-i486-1.txz:  Upgraded.
l/slang-2.1.4-i486-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-pt_BR-20080707_0-noarch-4.txz:  Added.
+--------------------------+
Sun Jun 21 13:23:07 CDT 2009
xap/pidgin-2.5.7-i486-1.txz:  Upgraded.
  This fixes the Yahoo protocol plugin.  Thanks to Willy Sudiarto Raharjo
  for letting us know about the problem and the new Pidgin release.
+--------------------------+
Sat Jun 20 12:49:02 CDT 2009
testing/packages/bash-4.0.024-i486-1.txz:  Upgraded.
testing/packages/mesa-7.4.3-i486-1.txz:  Upgraded.
+--------------------------+
Sat Jun 20 00:10:23 CDT 2009
x/mesa-7.4.1-i486-2.txz:  Rebuilt.  The software rasterizer was missing
  again.  Thanks to Mark Post for catching the omission.
+--------------------------+
Fri Jun 19 18:22:20 CDT 2009
d/ruby-1.8.7_p174-i486-1.txz:  Upgraded.
  This fixes a denial of service issue caused by the BigDecimal method
  handling large input values improperly that may allow attackers to
  crash the interpreter.  The issue affects most Rails applications.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1904
  (* Security fix *)
l/libpng-1.2.37-i486-1.txz:  Upgraded.
  This update fixes a possible security issue.  Jeff Phillips discovered an
  uninitialized-memory-read bug affecting interlaced images that may have
  security implications.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2042
  (* Security fix *)
x/mesa-7.4.1-i486-1.txz:  Upgraded.
  Well, actually more like "switched", or "reverted".  After many hours
  trying to track down the reason for reported instability with X and
  compositing (such as crashes when adjusting advanced desktop settings in
  KDE), we've found that it seems to happen only with MesaLib 7.4.2.  Rather
  than trying to cherry-pick changes between 7.4.1 and 7.4.2, we've switched
  to shipping 7.4.1 in the main tree, and have not run into any such problems
  since making the switch.  If people want to continue testing 7.4.2, we've
  moved it into /testing.  Let us know if you run into any problems with
  7.4.1 that are fixed with 7.4.2, and we'll take a look at individual diffs.
extra/kde3-compat/k3b3-1.0.5-i486-opt1.txz:  Added.
  In case the KDE4 version of k3b is not stable, this KDE3 version may be
  used along with the KDE3 compatibility packages in extra/kde3-compat/.
testing/packages/mesa-7.4.2-i486-2.txz:  Moved to /testing due to apparent
  regressions.
+--------------------------+

duangw

Fri Jun 26 22:06:58 CDT 2009
n/samba-3.2.13-i486-1.txz:  Upgraded.
  This upgrade fixes the following security issues:
  o CVE-2009-1888:
    In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a
    data value can potentially affect access control when "dos filemode"
    is set to "yes".
  o CVE-2009-1886:
    In Samba 3.2.0 to 3.2.12 (inclusive), the smbclient commands dealing
    with file names treat user input as a format string to asprintf.
    With a maliciously crafted file name smbclient can be made
    to execute code triggered by the server.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1888
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1886
  (* Security fix *)
n/sendmail-8.14.3-i486-2.txz:  Rebuilt.
  Fixed missing praliases.  Thanks to Mark Post.
n/sendmail-cf-8.14.3-noarch-2.txz:  Rebuilt.
xap/MPlayer-r29390-i486-1.txz:  Upgraded.
testing/packages/mesa-7.4.4-i486-1.txz:  Upgraded.
+--------------------------+
Wed Jun 24 19:48:10 CDT 2009
l/seamonkey-solibs-1.1.17-i486-1.txz:
  Upgraded to seamonkey-1.1.17 shared libraries.
xap/seamonkey-1.1.17-i486-1.txz:
  Upgraded to seamonkey-1.1.17.
  This release fixes some more security vulnerabilities.
  For more information, see:
    http://www.mozilla.org/security/ ... es/seamonkey11.html
  (* Security fix *)
+--------------------------+

sxzzsf

Sat Jun 27 19:02:36 CDT 2009
ap/most-5.0.0a-i486-2.txz: Fixed doc directory.
       Thanks to Ellington Santos.
xap/mozilla-thunderbird-2.0.0.22-i686-1.txz:
       Upgraded to thunderbird-2.0.0.22.
       This upgrade fixes some more security bugs.
       For more information, see:
       http://www.mozilla.org/security/ ... /thunderbird20.html
       (* Security fix *)
+--------------------------+

ginkgo

Mon Jun 29 14:44:25 CDT 2009
kde/kdenetwork-4.2.4-i486-2.txz:  Rebuilt.
  Patched to fix Yahoo! protocol.  Thanks to Matt Rogers.
xap/pidgin-2.5.8-i486-1.txz:  Upgraded.
+--------------------------+
Mon Jun 29 02:14:32 CDT 2009
d/git-1.6.3.3-i486-1.txz:  Upgraded.
d/subversion-1.6.3-i486-1.txz:  Upgraded.
kde/amarok-2.1.1-i486-1.txz:  Upgraded.
kde/koffice-2.0.1-i486-1.txz:  Upgraded.
kdei/koffice-l10n-*-2.0.1-noarch-1.txz:
  Upgraded to KOffice 2.0.1 l10n packages.
+--------------------------+

ginkgo

Wed Jul  1 16:04:35 CDT 2009
Hi folks -- the TODO isn't entirely empty here, but it's pretty much down
to minor nits, and so we're going to call this release candidate #1 and
(mostly) freeze further updates unless they happen to fix problems.
Regarding the kernel, 2.6.29.x has been well tested with this userspace
and seems like the best choice to ship for production use.  Perhaps we
can put something else (at least source and configs) in /testing, though.
a/slocate-3.1-i486-2.txz:  Rebuilt.  Don't index cifs or tmpfs.
  Add a few more directories to the list of paths to prune.
  Thanks to Cor Molenaar and Erik Jan Tromp.
l/urwid-0.9.8.4-i486-1.txz:  Added.  Needed for wicd.
n/dnsmasq-2.49-i486-1.txz:  Upgraded.
n/httpd-2.2.11-i486-2.txz:  Rebuilt.  This needed a recompile against the
  new apr package to fix building new modules.
  Thanks to Michael Johnson and Ian Carolan for reporting this issue.
n/iwlwifi-3945-ucode-15.32.2.9-fw-1.txz:  Upgraded.
n/iwlwifi-5000-ucode-8.24.2.12-fw-1.txz:  Upgraded.
n/php-5.2.10-i486-1.txz:  Upgraded.
x/xorg-server-1.6.1-i486-2.txz:  Rebuilt.
  Fixed default-font-path.  Thanks to Bruce Hill.
  Patched a key repeat problem in XineramaCheckMotion.
  Thanks to Adam Kennedy for pointing out the fix.
x/xorg-server-xephyr-1.6.1-i486-2.txz:  Rebuilt.
x/xorg-server-xnest-1.6.1-i486-2.txz:  Rebuilt.
x/xorg-server-xvfb-1.6.1-i486-2.txz:  Rebuilt.
xap/electricsheep-20090306-i486-2.txz:  Rebuilt.  Patched to fix an issue
  where mplayer needs a buffer when reading from a pipe.
  Thanks to Eric Hameleers.
extra/wicd/wicd-1.6.1-i486-1.txz:  Upgraded.  Thanks to Robby Workman.
+--------------------------+
Tue Jun 30 00:39:54 CDT 2009
ap/ghostscript-8.64-i486-2.txz:  Rebuilt.
  Patched various problems with ghostscript that could lead to a denial
  of service or the execution of arbitrary code when processing a malicious
  or malformed file.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0196
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0583
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0792
  (* Security fix *)
+--------------------------+