[FYI] slackware64 13.0 -current package update log

kangjs79

Mon Nov  2 20:41:16 UTC 2009
xap/mozilla-firefox-3.5.4-x86_64-1.txz:  Upgraded.
  Upgraded to firefox-3.5.4.
  This fixes some security issues.
  For more information, see:
    http://www.mozilla.org/security/ ... ties/firefox35.html
  (* Security fix *)

duangw

Fri Nov  6 00:22:35 UTC 2009
a/less-418-x86_64-4.txz:  Rebuilt.
  Patched lesspipe.sh to handle files of the form *.{1,2,3,4,5,6,7,8,9,n}.gz
  that are not gzipped *roff.  Thanks to Mark Post.
kde/kdeaccessibility-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdeadmin-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdeartwork-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdebase-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdebase-runtime-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdebase-workspace-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdebindings-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdeedu-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdegames-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdegraphics-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdelibs-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdelibs-experimental-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdemultimedia-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdenetwork-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdepim-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdepim-runtime-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdepimlibs-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdesdk-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdetoys-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdeutils-4.3.3-x86_64-1.txz:  Upgraded.
kde/kdevelop-3.9.96-x86_64-1.txz:  Upgraded.
kde/kdevplatform-0.9.96-x86_64-1.txz:  Upgraded.
kde/kdewebdev-4.3.3-x86_64-1.txz:  Upgraded.
kde/koffice-2.0.91-x86_64-1.txz:  Upgraded.
kde/oxygen-icons-4.3.3-x86_64-1.txz:  Upgraded.
kdei/*:  Upgraded.
l/gst-plugins-base-0.10.25-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-0.10.16-x86_64-1.txz:  Added.
l/gstreamer-0.10.25-x86_64-1.txz:  Upgraded.
l/jre-6u17-x86_64-1.txz:  Upgraded.
  Upgraded to Java(TM) 2 Platform Standard Edition Runtime Environment
  Version 6.0 update 17.
l/phonon-4.3.1-x86_64-1.txz:  Removed.
l/qca-2.0.2-x86_64-1.txz:  Upgraded.
l/qt-4.5.3_063bded-x86_64-2.txz:  Rebuilt.
  Recompiled to add the included version of the Phonon multimedia framework.
l/strigi-0.7.0-x86_64-1.txz:  Upgraded.
x/dejavu-fonts-ttf-2.30-noarch-1.txz:  Upgraded.
extra/jdk-6/jdk-6u17-x86_64-1.txz:  Upgraded.
  Upgraded to Java(TM) 2 Platform Standard Edition Development Kit
  Version 6.0 update 17.
+--------------------------+

kangjs79

Sun Nov  8 04:14:58 UTC 2009
l/seamonkey-solibs-2.0-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-3.5.5-x86_64-1.txz:  Upgraded.
  Upgraded to firefox-3.5.5.
  This fixes some stability bugs.
xap/seamonkey-2.0-x86_64-1.txz:  Upgraded.
+--------------------------+
Sat Nov  7 22:09:46 UTC 2009
l/phonon-4.3.1-x86_64-2.txz:  Added.
  Phonon in Qt is missing support files needed by KDE, so this package
  restores the missing pieces.  The Phonon library, include files, and
  pkgconfig files will remain in the Qt package, as those are the most
  up-to-date versions.  This package will contain the xine and gstreamer
  backends and other files needed by KDE.  The gstreamer backend source
  is taken from the newer sources in Qt, not from the standalone Phonon.
  Sorry about the misfire last time...  this stuff should work.  :-)
l/qt-4.5.3_063bded-x86_64-3.txz:  Rebuilt.
  Use -phonon -no-phonon-backend options.

kangjs79

Wed Nov 11 21:17:19 UTC 2009
l/seamonkey-solibs-2.0-x86_64-2.txz:  Rebuilt.
xap/seamonkey-2.0-x86_64-2.txz:  Rebuilt.
  As of version 2.0, SeaMonkey no longer includes a shared libgtkmozembed
  library, so the pkgconfig and header files for this have been removed from
  the package to avoid confusion over why trying to compile programs that
  use it no longer works.  There's not really any way to avoid this issue --
  it's either upgrade SeaMonkey and lose libgtkmozembed, or keep using version
  1.1.18 and miss out on SeaMonkey security updates.  If you really need
  libgtkmozembed, the seamonkey-1.1.18 packages will be retained in either
  /patches or /pasture for Slackware versions 13.0 and earlier.

ginkgo

Mon Nov 16 18:56:26 UTC 2009
a/openssl-solibs-0.9.8l-x86_64-1.txz:  Upgraded.
  Disables SSL renegotiation.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
  (* Security fix *)
kde/mplayerthumbs-1.2-x86_64-2.txz:  Removed.
  mplayerthumbs has been merged into kdemultimedia in KDE 4.3.3.
  It is recommended to reinstall kdemultimedia after removing this package.
l/seamonkey-solibs-2.0-x86_64-3.txz:  Rebuilt.
n/nn-6.7.3-x86_64-3.txz:  Rebuilt.
  Patched to retrieve hostname from /etc/HOSTNAME, use gpg rather than pgp,
  and to use correct sizeof(long) depending on the system architecture.
  Thanks to Aaron W. Hsu.
n/openssl-0.9.8l-x86_64-1.txz:  Upgraded.
  Disables SSL renegotiation.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
  (* Security fix *)
xap/seamonkey-2.0-x86_64-3.txz:  Rebuilt.
  Restored header files needed to build vlc and other programs.
+--------------------------+

kangjs79

Wed Dec  2 20:51:55 UTC 2009
a/xz-4.999.9beta-x86_64-1.tgz:  Upgraded.
ap/rpm-4.7.2-x86_64-1.txz:  Upgraded.
ap/sudo-1.6.8p12-x86_64-2.txz:  Rebuilt.
  Added --with-env-editor to ./configure flags so that users can do this:
  VISUAL=/usr/bin/pico visudo   OR   EDITOR=/usr/bin/pico visudo
d/ruby-1.9.1_p243-x86_64-1.txz:  Upgraded.
kde/koffice-2.1.0-x86_64-1.txz:  Upgraded.
  Note that there's a _really_ ugly patch that was used to make this compile,
  otherwise it fails with this error:
    kis_jpeg_source.cpp.text+0x79): undefined reference to
    `jpeg_resync_to_restart(jpeg_decompress_struct*, int)'
  I would welcome any hints about how to compile koffice without this patch.
kdei/koffice-l10n-*:  Upgraded.
n/bind-9.4.3_P4-x86_64-1.txz:  Upgraded.
  BIND 9.4.3-P4 is a SECURITY PATCH for BIND 9.4.3-P3.  It addresses a
  potential cache poisoning vulnerability, in which data in the additional
  section of a response could be cached without proper DNSSEC validation.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022
    http://www.kb.cert.org/vuls/id/418861
  (* Security fix *)
n/proftpd-1.3.2b-x86_64-1.txz:  Upgraded.
n/tcpdump-4.0.0-x86_64-2.txz:  Rebuilt.
  Patched to fix '-i any'.  Thanks to Laurence Darby and Kanedaaa Bohater
  for the bug report.
  Added shared libpcap (and .so.0 compatibility symlink).
  Thanks to Niels Horn for suggesting this, and testing compatibility with
  programs that expect libpcap.so.0.
xap/sane-1.0.20-x86_64-1.txz:  Upgraded.

kangjs79

Fri Dec  4 20:02:12 UTC 2009
d/ruby-1.9.1_p243-x86_64-2.txz:  Rebuilt.
  Fixed /usr/include/ruby symlink.  Thanks to Francisco Ambrozio.
+--------------------------+
Fri Dec  4 05:03:50 UTC 2009
kde/koffice-2.1.0-x86_64-2.txz:  Rebuilt.
  Fixed compiling krita by wrapping jpeglib.h with 'extern "C" { }'.
  Thanks to Heinz Wiesinger and Francisco Ambrozio.

duangw

Tue Dec  8 20:44:44 UTC 2009
a/kernel-firmware-2.6.29.6-noarch-3.txz:  Rebuilt.
a/kernel-generic-2.6.29.6-x86_64-3.txz:  Rebuilt.
  Patched a bug (CVE-2009-1298) where oversized IP packets cause a
  NULL pointer dereference and immediate hang.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1298
    http://lkml.org/lkml/2009/11/25/104
  (* Security fix *)
a/kernel-huge-2.6.29.6-x86_64-3.txz:  Rebuilt.
  Patched CVE-2009-1298.
  (* Security fix *)
a/kernel-modules-2.6.29.6-x86_64-3.txz:  Rebuilt.
d/kernel-headers-2.6.29.6-x86-3.txz:  Rebuilt.
k/kernel-source-2.6.29.6-noarch-3.txz:  Rebuilt.
  Patched CVE-2009-1298, and included the diff in /usr/src/linux-2.6.29.6.
  (* Security fix *)
kernels/*:  Rebuilt.
  Patched CVE-2009-1298.
  (* Security fix *)
+--------------------------+
Mon Dec  7 02:13:13 UTC 2009
d/ruby-1.9.1_p243-x86_64-3.txz:  Rebuilt.
  Added an explicit --enable-pthread.  This is mostly to make sure that we get
  the expected option set from future releases of Ruby -- it appears that not
  only is --enable-pthread the default in ruby-1.9.1, but trying to use
  --disable-pthread doesn't work.  Furthermore, Ruby and Tcl/Tk no longer work
  together unless both Ruby and Tcl/Tk are compiled with thread support.
  Compiling Tcl/Tk with thread support has caused some problems in the past.
  If a threaded Tcl app tries to fork(), it will hang, but by now most affected
  Tcl apps (such as eggdrop) should have patches available.
  Anyway, this should fix the issues with Ruby and Tk.  Please test it, and
  report any other problems that arise.
tcl/tcl-8.5.8-x86_64-1.txz:  Upgraded.
  Compiled using --enable-threads, since Ruby requires it to work with Tk.
tcl/tclx-8.4-x86_64-3.txz:  Rebuilt.
  Recompiled using --enable-threads.
tcl/tix-8.4.3-x86_64-2.txz:  Rebuilt.
  Recompiled using --enable-threads.
tcl/tk-8.5.8-x86_64-1.txz:  Upgraded.
  Compiled using --enable-threads, since Ruby requires it to work with Tk.
+--------------------------+
Sun Dec  6 03:23:23 UTC 2009
a/sed-4.2.1-x86_64-1.txz:  Upgraded.
d/git-1.6.5.4-x86_64-1.txz:  Upgraded.
d/python-2.6.4-x86_64-1.txz:  Upgraded.
d/subversion-1.6.6-x86_64-1.txz:  Upgraded.
l/libxml2-2.7.6-x86_64-1.txz:  Upgraded.
l/libxslt-1.1.26-x86_64-1.txz:  Upgraded.
l/neon-0.29.0-x86_64-1.txz:  Upgraded.
+--------------------------+

kangjs79

Sat Dec 12 04:51:11 UTC 2009
xap/gimp-2.6.8-x86_64-1.txz:  Upgraded.
  This fixes integer overflows in the image handling plugins that could
  lead to the execution of arbitrary code or an application crash if a
  malicious image is loaded.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1570
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3909
  (* Security fix *)
xap/mozilla-thunderbird-3.0-x86_64-1.txz:  Upgraded.
  Congrats to Mozilla Messaging on the great new Thunderbird release!
+--------------------------+
Thu Dec 10 00:12:58 UTC 2009
n/ntp-4.2.4p8-x86_64-1.txz:  Upgraded.
  Prevent a denial-of-service attack involving spoofed mode 7 packets.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3563
  (* Security fix *)

kangjs79

Mon Dec 14 18:57:37 UTC 2009
kde/k3b-1.69.0-x86_64-1.txz:  Upgraded.