Slackware ChangeLogs
Slackware Logo


Security Advisories



General Info

Get Slack

Install Help






Other Sites



Mailing Lists


Current (pre-release) ChangeLog for x86_64
Wed Apr 26 23:09:45 UTC 2017
Thanks to Robby Workman for help with these packages, especially with
preparing and testing updates to the GTK stack. :-)
a/btrfs-progs-v4.10.2-x86_64-1.txz: Upgraded.
a/grub-2.02-x86_64-1.txz: Upgraded.
a/lvm2-2.02.170-x86_64-1.txz: Upgraded.
a/xfsprogs-4.10.0-x86_64-1.txz: Upgraded.
ap/dmapi-2.2.12-x86_64-2.txz: Rebuilt.
ap/tmux-2.4-x86_64-1.txz: Upgraded.
d/swig-3.0.12-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-3.24.0-noarch-1.txz: Upgraded.
l/at-spi2-atk-2.24.0-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.24.0-x86_64-1.txz: Upgraded.
l/atk-2.24.0-x86_64-1.txz: Upgraded.
l/dconf-0.26.0-x86_64-1.txz: Upgraded.
l/dconf-editor-3.22.3-x86_64-1.txz: Upgraded.
l/freetype-2.7.1-x86_64-1.txz: Upgraded.
       Subpixel hinting has been enabled upstream by default, but you may adjust
       this in /etc/profile.d/freetype.{csh,sh}.
l/gdk-pixbuf2-2.36.6-x86_64-1.txz: Upgraded.
l/glib-networking-2.50.0-x86_64-1.txz: Upgraded.
l/glib2-2.52.1-x86_64-1.txz: Upgraded.
l/glibmm-2.50.1-x86_64-1.txz: Upgraded.
l/gnome-themes-standard-3.22.3-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.52.1-x86_64-1.txz: Upgraded.
l/gsettings-desktop-schemas-3.24.0-x86_64-1.txz: Upgraded.
l/gtk+3-3.22.12-x86_64-1.txz: Upgraded.
l/gtkmm3-3.22.0-x86_64-1.txz: Upgraded.
l/gvfs-1.32.1-x86_64-1.txz: Upgraded.
l/harfbuzz-1.4.6-x86_64-1.txz: Upgraded.
l/keyutils-1.5.10-x86_64-1.txz: Upgraded.
l/libcroco-0.6.12-x86_64-1.txz: Upgraded.
l/libgsf-1.14.41-x86_64-1.txz: Upgraded.
l/libnotify-0.7.7-x86_64-1.txz: Upgraded.
l/librsvg-2.40.17-x86_64-1.txz: Upgraded.
l/libsigc++-2.10.0-x86_64-1.txz: Upgraded.
l/libsoup-2.58.0-x86_64-1.txz: Upgraded.
l/libssh-0.7.5-x86_64-1.txz: Upgraded.
l/libssh2-1.8.0-x86_64-1.txz: Upgraded.
l/pango-1.40.5-x86_64-1.txz: Upgraded.
l/pangomm-2.40.1-x86_64-1.txz: Upgraded.
l/pygobject3-3.24.1-x86_64-1.txz: Upgraded.
l/shared-mime-info-1.7-x86_64-1.txz: Upgraded.
l/sip-4.19.2-x86_64-1.txz: Upgraded.
l/vte-0.44.3-x86_64-1.txz: Upgraded.
n/bluez-5.44-x86_64-1.txz: Upgraded.
n/iproute2-4.10.0-x86_64-1.txz: Upgraded.
x/libevdev-1.5.6-x86_64-1.txz: Upgraded.
x/xf86-video-nouveau-1.0.15-x86_64-1.txz: Upgraded.
xap/gparted-0.28.1-x86_64-1.txz: Upgraded.
xfce/garcon-0.6.0-x86_64-1.txz: Upgraded.
xfce/xfce4-pulseaudio-plugin-0.2.5-x86_64-1.txz: Upgraded.
xfce/xfce4-systemload-plugin-1.2.1-x86_64-1.txz: Upgraded.
xfce/xfce4-taskmanager-1.2.0-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-0.8.4-x86_64-1.txz: Upgraded.
xfce/xfce4-weather-plugin-0.8.9-x86_64-1.txz: Upgraded.
Mon Apr 24 18:06:06 UTC 2017
a/cryptsetup-1.7.4-x86_64-1.txz: Upgraded.
a/eudev-3.2.2-x86_64-1.txz: Upgraded.
a/mdadm-4.0-x86_64-1.txz: Upgraded.
ap/vim-8.0.0586-x86_64-1.txz: Upgraded.
e/emacs-25.2-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-52.1.0esr-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/vim-gvim-8.0.0586-x86_64-1.txz: Upgraded.
Fri Apr 21 22:40:12 UTC 2017
a/etc-14.2-x86_64-10.txz: Rebuilt.
       Added user:group for NTP (UID 44/GID 44).
ap/sudo-1.8.19p2-x86_64-1.txz: Upgraded.
d/git-2.12.2-x86_64-1.txz: Upgraded.
d/mercurial-4.1.3-x86_64-1.txz: Upgraded.
l/libgphoto2-2.5.13-x86_64-1.txz: Upgraded.
n/curl-7.54.0-x86_64-1.txz: Upgraded.
       This update fixes a security issue:
       Switch off SSL session id when client cert is used.
       For more information, see:
       (* Security fix *)
n/dhcpcd-6.11.5-x86_64-1.txz: Upgraded.
       Thanks to Robby Workman.
n/ethtool-4.10-x86_64-1.txz: Upgraded.
n/getmail-4.54.0-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p10-x86_64-1.txz: Upgraded.
       There were some changes made to NTP setup in -current:
       First, NTP drops privileges and runs as ntp:ntp. Be sure to install the
       updated etc package to get the new user and group.
       Some files have been relocated:
       The ntp.keys file has moved from /etc/ntp/ to /etc/.
       The drift and stats files now reside in /var/lib/ntp/.
       The step-tickers file has been removed. It's actually been deprecated for
       a while and nothing has referenced in for quite some time.
       Be sure to move the new into place, and move over or merge
       from the .new config files.
       Thanks to Robby Workman for help with these changes.
       In addition to bug fixes and enhancements, this release fixes security
       issues of medium and low severity:
       Denial of Service via Malformed Config (Medium)
       Authenticated DoS via Malicious Config Option (Medium)
       Potential Overflows in ctl_put() functions (Medium)
       Buffer Overflow in ntpq when fetching reslist from a malicious ntpd (Medium)
       0rigin DoS (Medium)
       Buffer Overflow in DPTS Clock (Low)
       Improper use of snprintf() in mx4200_send() (Low)
       The following issues do not apply to Linux systems:
       Privileged execution of User Library code (WINDOWS PPSAPI ONLY) (Low)
       Stack Buffer Overflow from Command Line (WINDOWS installer ONLY) (Low)
       Data Structure terminated insufficiently (WINDOWS installer ONLY) (Low)
       For more information, see:
       (* Security fix *)
n/proftpd-1.3.6-x86_64-1.txz: Upgraded.
       This release fixes a security issue:
       AllowChrootSymlinks off does not check entire DefaultRoot path for symlinks.
       For more information, see:
       (* Security fix *)
Wed Apr 19 04:46:45 UTC 2017
a/minicom-2.7.1-x86_64-1.txz: Upgraded.
       Fix an out of bounds data access that can lead to remote code execution.
       This issue was found by Solar Designer of Openwall during a security audit
       of the Virtuozzo 7 product, which contains derived downstream code in its
       prl-vzvncserver component.
       For more information, see:
       (* Security fix *)
a/usb_modeswitch-2.5.0-x86_64-1.txz: Upgraded.
ap/hplip-3.17.4-x86_64-1.txz: Upgraded.
l/wavpack-5.1.0-x86_64-1.txz: Upgraded.
n/mutt-1.8.1-x86_64-1.txz: Upgraded.
testing/packages/gcc-6.3.0-x86_64-2.txz: Rebuilt.
testing/packages/gcc-g++-6.3.0-x86_64-2.txz: Rebuilt.
       Move some Python files into this package instead of the gcc-java package.
       Move the Python files into a more correct directory.
       Thanks to Heinz Wiesinger.
testing/packages/gcc-gfortran-6.3.0-x86_64-2.txz: Rebuilt.
testing/packages/gcc-gnat-6.3.0-x86_64-2.txz: Rebuilt.
testing/packages/gcc-go-6.3.0-x86_64-2.txz: Rebuilt.
testing/packages/gcc-java-6.3.0-x86_64-2.txz: Rebuilt.
       Move some Python files from this package into the gcc-g++ package.
       Move the Python files into a more correct directory.
       Thanks to Heinz Wiesinger.
testing/packages/gcc-objc-6.3.0-x86_64-2.txz: Rebuilt.
Tue Apr 18 04:21:33 UTC 2017
x/libdrm-2.4.80-x86_64-1.txz: Upgraded.
x/mesa-17.0.4-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-52.0.1-x86_64-1.txz: Upgraded.
Thu Apr 13 21:19:45 UTC 2017
ap/nano-2.8.1-x86_64-1.txz: Upgraded.
n/bind-9.11.0_P5-x86_64-1.txz: Upgraded.
       Fixed denial of service security issues.
       For more information, see:
       (* Security fix *)
x/motif-2.3.7-x86_64-1.txz: Upgraded.
xfce/tumbler-0.1.31-x86_64-11.txz: Rebuilt.
       Fixed ffmpegthumbnailer bug. Thanks to Robby Workman.
Mon Apr 10 18:08:13 UTC 2017
ap/bc-1.07.1-x86_64-1.txz: Upgraded.
       This fixes the input_char read bug that was causing kernel builds to hang.
x/m17n-lib-1.7.0-x86_64-1.txz: Upgraded.
xap/xlockmore-5.51-x86_64-2.txz: Rebuilt.
       Fixed appdefaultdir location. Thanks to Richard Narron.
Sat Apr 8 16:24:35 UTC 2017
a/ntfs-3g-2017.3.23-x86_64-1.txz: Upgraded.
ap/acct-6.6.3-x86_64-1.txz: Upgraded.
ap/bc-1.07-x86_64-1.txz: Upgraded.
ap/cups-2.2.3-x86_64-1.txz: Upgraded.
ap/cups-filters-1.13.4-x86_64-1.txz: Upgraded.
ap/dc3dd-7.2.646-x86_64-1.txz: Upgraded.
ap/gutenprint-5.2.12-x86_64-1.txz: Upgraded.
e/emacs-25.1-x86_64-3.txz: Rebuilt.
kde/calligra-2.9.11-x86_64-9.txz: Rebuilt.
kde/kdelibs-4.14.30-x86_64-1.txz: Upgraded.
kde/kopete-4.14.3-x86_64-3.txz: Rebuilt.
kde/krdc-4.14.3-x86_64-3.txz: Rebuilt.
kde/libkdcraw-4.14.3-x86_64-4.txz: Rebuilt.
l/LibRaw-0.18.2-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/babl-0.1.24-x86_64-1.txz: Upgraded.
l/enchant-1.6.1-x86_64-1.txz: Upgraded.
l/ffmpeg-3.2.4-x86_64-4.txz: Rebuilt.
l/gegl-0.2.0-x86_64-4.txz: Rebuilt.
l/giflib-5.1.4-x86_64-1.txz: Upgraded.
l/gvfs-1.26.3-x86_64-2.txz: Rebuilt.
l/imagemagick-6.9.8_3-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/jasper-2.0.12-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
       Thanks to Heinz Wiesinger.
l/libarchive-3.3.1-x86_64-1.txz: Upgraded.
l/libbluray-1.0.0-x86_64-1.txz: Added.
       Built with support for BD-J menus, but without the necessary .jar
       file to use it. Thanks to Heinz Wiesinger.
l/libdiscid-0.6.2-x86_64-1.txz: Upgraded.
l/libmtp-1.1.13-x86_64-1.txz: Upgraded.
l/libraw1394-2.1.2-x86_64-1.txz: Upgraded.
l/libsamplerate-0.1.9-x86_64-1.txz: Upgraded.
l/libsndfile-1.0.28-x86_64-1.txz: Upgraded.
l/libspectre-0.2.8-x86_64-1.txz: Upgraded.
l/libtiff-4.0.7-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
l/libvncserver-0.9.11-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/poppler-0.53.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/virtuoso-ose-6.1.8-x86_64-5.txz: Rebuilt.
n/openvpn-2.4.1-x86_64-1.txz: Upgraded.
x/libdrm-2.4.78-x86_64-1.txz: Upgraded.
x/libinput-1.7.0-x86_64-1.txz: Upgraded.
x/libpciaccess-0.13.5-x86_64-1.txz: Upgraded.
x/libva-1.8.0-x86_64-1.txz: Upgraded.
x/libva-intel-driver-1.7.3-x86_64-1.txz: Upgraded.
x/mesa-17.0.3-x86_64-1.txz: Upgraded.
xap/MPlayer-1.3_20170208-x86_64-3.txz: Rebuilt.
xap/gimp-2.8.20-x86_64-2.txz: Rebuilt.
xap/mozilla-thunderbird-52.0-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.8-x86_64-1.txz: Upgraded.
       Thanks to Heinz Wiesinger.
xap/xlockmore-5.51-x86_64-1.txz: Upgraded.
xap/xv-3.10a-x86_64-8.txz: Rebuilt.
xfce/tumbler-0.1.31-x86_64-10.txz: Rebuilt.
Sat Apr 1 05:16:59 UTC 2017
ap/nano-2.8.0-x86_64-1.txz: Upgraded.
n/samba-4.6.2-x86_64-1.txz: Upgraded.
       This is a bug fix release to address a regression introduced by the security
       fixes for CVE-2017-2619 (Symlink race allows access outside share definition).
       Please see for details.
Thu Mar 30 20:18:17 UTC 2017
l/ffmpeg-3.2.4-x86_64-3.txz: Rebuilt.
       Recompiled against libcdio-paranoia-10.2+0.94+1.
x/libwacom-0.24-x86_64-1.txz: Upgraded.
xap/MPlayer-1.3_20170208-x86_64-2.txz: Rebuilt.
       Recompiled against libcdio-paranoia-10.2+0.94+1.
Tue Mar 28 20:30:50 UTC 2017
ap/mariadb-10.0.30-x86_64-1.txz: Upgraded.
       This update fixes security issues:
       Crash in
       Difficult to exploit vulnerability allows low privileged attacker with
       logon to compromise the server. Successful attacks of this vulnerability
       can result in unauthorized access to data.
       For more information, see:
       (* Security fix *)
d/pkg-config-0.29.2-x86_64-1.txz: Upgraded.
l/libcdio-paranoia-10.2+0.94+1-x86_64-1.txz: Upgraded.
n/openssh-7.5p1-x86_64-1.txz: Upgraded.
       This release deprecates the sshd_config UsePrivilegeSeparation option,
       thereby making privilege separation mandatory. Note that privilege
       separation has been on by default for almost 15 years and sandboxing
       has been on by default for almost the last five, so this shouldn't
       change anything for most users.
xap/mozilla-firefox-52.0.2-x86_64-1.txz: Upgraded.
       This is a bugfix release.
xfce/xfce4-notifyd-0.3.6-x86_64-1.txz: Upgraded.
Thu Mar 23 21:38:23 UTC 2017
a/glibc-zoneinfo-2017b-noarch-1.txz: Upgraded.
a/libgudev-231-x86_64-1.txz: Upgraded.
a/lilo-24.2-x86_64-4.txz: Rebuilt.
       Issue a warning rather than a fatal error for colons in /dev/disk/by-id/
       device names. Thanks to alex14641 on LQ.
d/cmake-3.7.2-x86_64-1.txz: Upgraded.
d/ruby-2.4.1-x86_64-1.txz: Upgraded.
n/mcabber-1.0.5-x86_64-1.txz: Upgraded.
       This update fixes a security issue:
       An incorrect implementation of XEP-0280: Message Carbons in multiple XMPP
       clients allows a remote attacker to impersonate any user, including
       contacts, in the vulnerable application's display. This allows for various
       kinds of social engineering attacks.
       For more information, see:
       (* Security fix *)
n/samba-4.6.1-x86_64-1.txz: Upgraded.
       This update fixes a security issue:
       All versions of Samba prior to 4.6.1, 4.5.7, 4.4.12 are vulnerable to
       a malicious client using a symlink race to allow access to areas of
       the server file system not exported under the share definition.
       For more information, see:
       (* Security fix *)
Tue Mar 21 21:42:52 UTC 2017
a/dbus-1.10.16-x86_64-1.txz: Upgraded.
a/file-5.30-x86_64-1.txz: Upgraded.
a/pciutils-3.5.4-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.10.4-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.10.4-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.10.4-x86_64-1.txz: Upgraded.
l/gstreamer-1.10.4-x86_64-1.txz: Upgraded.
l/libpng-1.6.29-x86_64-1.txz: Upgraded.
l/libusb-1.0.21-x86_64-1.txz: Upgraded.
l/zlib-1.2.11-x86_64-1.txz: Upgraded.
n/alpine-2.21-x86_64-1.txz: Upgraded.
n/imapd-2.21-x86_64-1.txz: Upgraded.
x/dejavu-fonts-ttf-2.37-noarch-1.txz: Upgraded.
xfce/Thunar-1.6.11-x86_64-1.txz: Upgraded.
Mon Mar 20 20:43:14 UTC 2017
a/e2fsprogs-1.43.4-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.9-x86_64-1.txz: Upgraded.
       Support FSTRIM on LUKS devices unlocked at boot. Note that the expected name
       of a root LUKS device has changed -- please see the revised README_CRYPT.TXT.
       Thanks to Mason Loring Bliss for the initial patch, and Robby Workman
       for a few adjustments and documentation.
a/udisks2-2.1.8-x86_64-1.txz: Upgraded.
ap/man-pages-4.10-noarch-1.txz: Upgraded.
n/gnutls-3.5.10-x86_64-1.txz: Upgraded.
n/mobile-broadband-provider-info-20170310-x86_64-1.txz: Upgraded.
x/libpthread-stubs-0.4-noarch-1.txz: Upgraded.
x/mesa-17.0.2-x86_64-1.txz: Upgraded.
x/xf86-video-amdgpu-1.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-ati-7.9.0-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.8.2-x86_64-2.txz: Rebuilt.
       Added ffmpeg support. Thanks to franzen.
xap/windowmaker-0.95.8-x86_64-1.txz: Upgraded.
Sun Mar 19 05:27:13 UTC 2017
l/SDL2-2.0.5-x86_64-1.txz: Added.
l/SDL2_gfx-1.0.3-x86_64-1.txz: Added.
l/SDL2_image-2.0.1-x86_64-1.txz: Added.
l/SDL2_mixer-2.0.1-x86_64-1.txz: Added.
l/SDL2_net-2.0.1-x86_64-1.txz: Added.
l/SDL2_ttf-2.0.14-x86_64-1.txz: Added.
l/ffmpeg-3.2.4-x86_64-2.txz: Rebuilt.
       The package now includes ffplay, which required the SDL2 libraries.
xap/audacious-3.8.2-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.8.2-x86_64-1.txz: Upgraded.
Sat Mar 18 00:30:40 UTC 2017
xap/mozilla-firefox-52.0.1-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Fri Mar 17 21:21:21 UTC 2017
a/mlocate-0.26-x86_64-1.txz: Added.
       This replaces slocate as the system locate/updatedb utilities.
       In tests here, mlocate was about 20% faster than slocate at creating a
       new database. When updating an existing database, it was many times
       faster. On my machine, the nightly database update took about 5 minutes
       with slocate, but only a few seconds with mlocate.
       I might miss (slightly) the heavy drive activity at 04:40 that would let
       me know that it was time for bed. ;-)
       Be sure to move the new /etc/updatedb.conf into place when installing
       this package.
a/slocate-3.1-x86_64-4.txz: Removed.
xfce/xfwm4-4.12.4-x86_64-1.txz: Upgraded.
Thu Mar 16 01:37:05 UTC 2017
ap/jove- Rebuilt.
       Ensure that the teach-jove file is installed. Thanks to bassmadrigal.
d/llvm-4.0.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/gdbm-1.13-x86_64-1.txz: Upgraded.
n/irssi-1.0.2-x86_64-1.txz: Upgraded.
x/mesa-17.0.1-x86_64-2.txz: Rebuilt.
       Recompiled against
x/xf86-input-libinput-0.25.0-x86_64-1.txz: Upgraded.
x/xf86-video-intel-git_20170313_7e9e92c8-x86_64-1.txz: Upgraded.
x/xf86-video-nouveau-1.0.14-x86_64-1.txz: Upgraded.
x/xf86-video-vmware-13.2.1-x86_64-3.txz: Rebuilt.
       Recompiled against
x/xorg-server-1.19.3-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.19.3-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.19.3-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.19.3-x86_64-1.txz: Upgraded.
xap/pidgin-2.12.0-x86_64-1.txz: Upgraded.
       This update fixes a minor security issue (out of bounds memory read in
       For more information, see:
       (* Security fix *)
Fri Mar 10 05:41:05 UTC 2017
a/coreutils-8.27-x86_64-1.txz: Upgraded.
ap/mc-4.8.19-x86_64-1.txz: Upgraded.
l/harfbuzz-1.4.4-x86_64-1.txz: Upgraded.
x/libepoxy-1.4.1-x86_64-1.txz: Upgraded.
x/libinput-1.6.3-x86_64-1.txz: Upgraded.
x/mesa-17.0.1-x86_64-1.txz: Upgraded.
x/motif-2.3.6-x86_64-1.txz: Upgraded.
xap/gimp-2.8.20-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-52.0-x86_64-2.txz: Rebuilt.
       Recompiled with --enable-alsa option. Without this, there is no fallback
       support for ALSA if PulseAudio is not present. Thanks to Ivan Kalvatchev.
xap/network-manager-applet-1.4.6-x86_64-1.txz: Upgraded.
Wed Mar 8 00:17:36 UTC 2017
a/kmod-24-x86_64-1.txz: Upgraded.
d/binutils-2.28-x86_64-1.txz: Upgraded.
d/oprofile-1.1.0-x86_64-3.txz: Rebuilt.
       Recompiled against new libbfd from binutils-2.28.
l/ffmpeg-3.2.4-x86_64-1.txz: Upgraded.
       Autodetect more optional dependencies in the build script.
       Thanks to Heinz Wiesinger.
x/libX11-1.6.5-x86_64-1.txz: Upgraded.
x/libXi-1.7.9-x86_64-1.txz: Upgraded.
x/presentproto-1.1-x86_64-1.txz: Upgraded.
x/sessreg-1.1.1-x86_64-1.txz: Upgraded.
x/util-macros-1.19.1-noarch-1.txz: Upgraded.
x/xauth-1.0.10-x86_64-1.txz: Upgraded.
x/xconsole-1.0.7-x86_64-1.txz: Upgraded.
x/xf86-input-evdev-2.10.5-x86_64-1.txz: Upgraded.
x/xf86-input-libinput-0.24.0-x86_64-1.txz: Upgraded.
x/xf86-video-chips-1.2.7-x86_64-1.txz: Added.
x/xf86-video-glint-1.2.9-x86_64-1.txz: Added.
x/xf86-video-i740-1.3.6-x86_64-1.txz: Added.
x/xf86-video-intel-git_20170228_78d7a09b-x86_64-1.txz: Upgraded.
x/xf86-video-mga-1.6.5-x86_64-1.txz: Added.
x/xf86-video-nv-2.1.21-x86_64-1.txz: Added.
x/xf86-video-openchrome-0.6.0-x86_64-1.txz: Upgraded.
x/xf86-video-r128-6.10.2-x86_64-1.txz: Added.
x/xf86-video-savage-2.3.9-x86_64-1.txz: Added.
x/xf86-video-siliconmotion-1.7.9-x86_64-1.txz: Added.
x/xf86-video-sis-0.10.9-x86_64-1.txz: Added.
x/xf86-video-sisusb-0.9.7-x86_64-1.txz: Upgraded.
x/xf86-video-tdfx-1.4.7-x86_64-1.txz: Added.
x/xf86-video-trident-1.3.8-x86_64-1.txz: Added.
x/xorg-server-1.19.2-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.19.2-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.19.2-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.19.2-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-52.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/mozilla-thunderbird-45.8.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Tue Feb 28 23:51:55 UTC 2017
a/coreutils-8.26-x86_64-2.txz: Rebuilt.
       Added a few more file extensions to /etc/DIR_COLORS, including .lz.
a/ed-1.14.2-x86_64-1.txz: Upgraded.
a/etc-14.2-x86_64-9.txz: Rebuilt.
       Added cgred group to /etc/ (cgred:x:41:)
a/glibc-zoneinfo-2017a-noarch-1.txz: Upgraded.
a/libcgroup-0.41-x86_64-2.txz: Rebuilt.
       Fixed rc.cgred to source the correct config file.
       Changed /usr/bin/cgexec from setuid root to setgid cgred.
       Don't remove the entire cgroup file system with "rc.cgconfig stop".
       Thanks to chris.willing.
a/shadow-4.2.1-x86_64-2.txz: Rebuilt.
       Patched a potential security issue that allows any local user to send
       SIGKILL to other processes with root privileges. Note that Slackware
       is not vulnerable since the bug only affects systems that use PAM.
       For more information, see:
       (* Security fix *)
a/util-linux-2.29.2-x86_64-1.txz: Upgraded.
       This update fixes a potential security issue that allows any local user
       to send SIGKILL to other processes with root privileges. Note that
       Slackware is not vulnerable since we do not use /bin/su from util-linux,
       and the bug only affects systems that use PAM.
       For more information, see:
       (* Security fix *)
ap/nano-2.7.5-x86_64-1.txz: Upgraded.
ap/screen-4.5.1-x86_64-1.txz: Upgraded.
d/guile-2.0.14-x86_64-1.txz: Upgraded.
l/cairo-1.14.8-x86_64-1.txz: Upgraded.
l/fftw-3.3.6_pl1-x86_64-1.txz: Upgraded.
l/libimobiledevice-1.2.0-x86_64-2.txz: Rebuilt.
       Patched to fix mounting iOS 10 devices. Thanks to qunying.
l/libsigsegv-2.11-x86_64-1.txz: Upgraded.
n/ModemManager-1.6.4-x86_64-1.txz: Upgraded.
n/NetworkManager-1.6.2-x86_64-1.txz: Upgraded.
n/curl-7.53.1-x86_64-1.txz: Upgraded.
       Fixes SSL_VERIFYSTATUS ignored security issue.
       (Issue only existed in Slackware -current, not in any -stable releases)
       For more information, see:
       (* Security fix *)
n/libmbim-1.14.0-x86_64-1.txz: Upgraded.
n/libqmi-1.16.2-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
xap/windowmaker-0.95.7-x86_64-3.txz: Rebuilt.
       Disabled overly verbose logging of warnings to syslog. Thanks to B Watson.
Mon Feb 13 06:21:22 UTC 2017
a/grep-3.0-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.10.3-x86_64-1.txz: Added.
       Thanks to alienBOB.
n/wget-1.19.1-x86_64-1.txz: Upgraded.
Fri Feb 10 21:07:35 UTC 2017
a/aaa_elflibs-14.2-x86_64-28.txz: Rebuilt.
a/grep-2.28-x86_64-1.txz: Upgraded.
a/hdparm-9.51-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.0.2k-x86_64-1.txz: Upgraded.
a/sed-4.4-x86_64-1.txz: Upgraded.
a/util-linux-2.29.1-x86_64-1.txz: Upgraded.
ap/ddrescue-1.22-x86_64-1.txz: Upgraded.
ap/flac-1.3.2-x86_64-1.txz: Upgraded.
ap/sqlite-3.16.2-x86_64-1.txz: Upgraded.
ap/tmux-2.3-x86_64-2.txz: Rebuilt.
       Recompiled against libevent-2.1.8.
d/llvm-3.9.1-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
       Added support for lldb and openmp to the package.
       Thanks to Heinz Wiesinger.
d/opencl-headers-2.1-noarch-1.txz: Added.
d/scons-2.5.1-x86_64-1.txz: Upgraded.
l/ffmpeg-3.2.3-x86_64-1.txz: Added.
       Thanks to Heinz Wiesinger.
l/gmime-2.6.23-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.10.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.10.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.10.3-x86_64-1.txz: Upgraded.
l/json-c-0.12-x86_64-1.txz: Removed.
       This had been a required dep for PulseAudio, but has become optional. Since
       being added to Slackware, a few other packages had begun to use it
       (NetworkManager, BIND), but it's not really critical there either so we're
       removing it from the main tree. If you require json-c for something, it is
       expected that SBo will be picking it up.
l/libclc-20160921_520743b-x86_64-1.txz: Added.
       This is needed by Mesa.
l/libedit-20160903_3.1-x86_64-1.txz: Added.
       This is needed by lldb.
l/libevent-2.1.8-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/libjpeg-turbo-1.5.1-x86_64-1.txz: Upgraded.
l/libnl3-3.2.29-x86_64-1.txz: Upgraded.
l/libpcap-1.8.1-x86_64-1.txz: Upgraded.
l/libvpx-1.6.1-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/libzip-1.1.3-x86_64-1.txz: Upgraded.
l/ocl-icd-2.2.11-x86_64-1.txz: Added.
l/openjpeg-2.1.2-x86_64-1.txz: Upgraded.
l/pulseaudio-10.0-x86_64-1.txz: Upgraded.
l/python-six-1.10.0-x86_64-1.txz: Added.
       This is needed by lldb.
l/rasqal-0.9.33-x86_64-1.txz: Upgraded.
l/redland-1.0.17-x86_64-1.txz: Upgraded.
l/serf-1.3.9-x86_64-1.txz: Upgraded.
n/NetworkManager-1.6.0-x86_64-1.txz: Upgraded.
n/bind-9.11.0_P3-x86_64-1.txz: Upgraded.
       This update fixes a denial-of-service vulnerability. Under some conditions
       when using both DNS64 and RPZ to rewrite query responses, query processing
       can resume in an inconsistent state leading to either an INSIST assertion
       failure or an attempt to read through a NULL pointer.
       For more information, see:
       (* Security fix *)
n/iproute2-4.9.0-x86_64-1.txz: Upgraded.
n/iptables-1.6.1-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
n/links-2.14-x86_64-2.txz: Rebuilt.
       Recompiled against libevent-2.1.8.
n/mutt-1.7.2-x86_64-2.txz: Rebuilt.
       Recompiled with --enable-sidebar option. Thanks to Corrado Franco.
n/nftables-0.7-x86_64-2.txz: Rebuilt.
       Recompiled against iptables-1.6.1. Added libxtables support.
n/ntp-4.2.8p9-x86_64-3.txz: Rebuilt.
       Recompiled against libevent-2.1.8.
n/openssl-1.0.2k-x86_64-1.txz: Upgraded.
       This update fixes security issues:
       Truncated packet could crash via OOB read (CVE-2017-3731)
       BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
       Montgomery multiplication may produce incorrect results (CVE-2016-7055)
       For more information, see:
       (* Security fix *)
n/php-5.6.30-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
n/samba-4.5.5-x86_64-1.txz: Upgraded.
n/tcpdump-4.9.0-x86_64-1.txz: Upgraded.
       Fixed bugs which allow an attacker to crash tcpdump (denial of service).
       For more information, see:
       (* Security fix *)
n/wget-1.19-x86_64-1.txz: Upgraded.
n/zd1211-firmware-1.5-fw-1.txz: Upgraded.
x/fontconfig-2.12.1-x86_64-1.txz: Upgraded.
       Thanks to Robby Workman.
x/libdrm-2.4.75-x86_64-1.txz: Upgraded.
x/libinput-1.6.0-x86_64-1.txz: Upgraded.
x/mesa-13.0.4-x86_64-1.txz: Upgraded.
x/xf86-video-vmware-13.2.1-x86_64-2.txz: Rebuilt.
       Recompiled against llvm-3.9.1.
xap/MPlayer-1.3_20170208-x86_64-1.txz: Upgraded.
       Upgraded to 1.3 branch, compiled against system ffmpeg-3.2.3.
       Thanks to Heinz Wiesinger.
xap/mozilla-thunderbird-45.7.1-x86_64-1.txz: Upgraded.
       Fixed crash when viewing certain IMAP messages (introduced in 45.7.0)
xap/network-manager-applet-1.4.4-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.6-x86_64-10.txz: Rebuilt.
       Recompiled against system ffmpeg-3.2.3.
Thu Jan 26 21:33:41 UTC 2017
xap/mozilla-firefox-51.0.1-x86_64-1.txz: Upgraded.
       Fixed geolocation problems with Firefox 51.0.
xap/mozilla-thunderbird-45.7.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Mon Jan 23 21:30:13 UTC 2017
d/gdb-7.12.1-x86_64-1.txz: Upgraded.
xap/fvwm-2.6.7-x86_64-3.txz: Rebuilt.
       Fixed the broken symlinks in a better way. Thanks to GazL for the patch.
xap/mozilla-firefox-51.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Fri Jan 20 04:18:02 UTC 2017
l/seamonkey-solibs-2.46-x86_64-3.txz: Rebuilt.
xap/fvwm-2.6.7-x86_64-2.txz: Rebuilt.
       Reverted an upstream patch that causes some broken symlinks to be installed.
       Thanks to GazL.
xap/seamonkey-2.46-x86_64-3.txz: Rebuilt.
       Recompiled with less aggressive optimization (-Os) to fix crashes.
Wed Jan 18 20:39:17 UTC 2017
ap/mariadb-10.0.29-x86_64-1.txz: Upgraded.
       This update fixes several security issues.
       For more information, see:
       (* Security fix *)
Wed Jan 18 02:33:18 UTC 2017
a/cryptsetup-1.7.3-x86_64-2.txz: Rebuilt.
       Recompiled with --enable-cryptsetup-reencrypt option.
       Thanks to Jakub Jankowski for the suggestion.
ap/screen-4.5.0-x86_64-1.txz: Upgraded.
l/libtasn1-4.10-x86_64-1.txz: Upgraded.
l/seamonkey-solibs-2.46-x86_64-2.txz: Rebuilt.
x/libinput-1.5.4-x86_64-1.txz: Added.
x/libwacom-0.22-x86_64-1.txz: Added.
       This is needed for libinput.
x/xf86-input-libinput-0.23.0-x86_64-1.txz: Added.
       This is the new generic X.Org input driver which replaces evdev for most
       purposes. It does not (for now) replace xf86-input-synaptics or
       xf86-input-vmmouse. If this driver package is missing then X will fall
       back to using xf86-input-evdev as before.
       Thanks to Robby Workman.
x/xorg-server-1.19.1-x86_64-2.txz: Rebuilt.
       Rename 90-keyboard-layout.conf to 90-keyboard-layout-evdev.conf.
x/xorg-server-xephyr-1.19.1-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-1.19.1-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-1.19.1-x86_64-2.txz: Rebuilt.
xap/seamonkey-2.46-x86_64-2.txz: Rebuilt.
       Restored missing nspr/obsolete headers.
Sat Jan 14 05:34:32 UTC 2017
a/util-linux-2.29-x86_64-2.txz: Rebuilt.
       Restored support for /etc/mtab.
n/iw-4.9-x86_64-1.txz: Upgraded.
x/scim-1.4.17-x86_64-1.txz: Upgraded.
extra/tigervnc/tigervnc-1.7.0-x86_64-2.txz: Rebuilt.
       Recompiled for xorg-server-1.19.1.
Fri Jan 13 01:10:05 UTC 2017
a/grub-2.02_beta3-x86_64-2.txz: Rebuilt.
       Make the package version number more sane.
Thu Jan 12 21:07:23 UTC 2017
ap/cups-filters-1.13.2-x86_64-1.txz: Upgraded.
ap/nano-2.7.4-x86_64-2.txz: Rebuilt.
       Fixed /etc/ Thanks to SeB.
kde/calligra-2.9.11-x86_64-8.txz: Rebuilt.
l/poppler-0.50.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
xfce/tumbler-0.1.31-x86_64-9.txz: Rebuilt.
Thu Jan 12 01:15:52 UTC 2017
a/aaa_elflibs-14.2-x86_64-27.txz: Rebuilt.
       Upgraded,, and
a/bash-4.4.005-x86_64-2.txz: Rebuilt.
a/dialog-1.3_20160828-x86_64-1.txz: Upgraded.
a/ed-1.14.1-x86_64-1.txz: Upgraded.
a/elvis-2.2_0-x86_64-3.txz: Rebuilt.
a/file-5.29-x86_64-1.txz: Upgraded.
a/gawk-4.1.4-x86_64-2.txz: Rebuilt.
a/gettext- Rebuilt.
a/getty-ps-2.1.0b-x86_64-3.txz: Rebuilt.
a/gpm-1.20.7-x86_64-4.txz: Rebuilt.
a/gptfdisk-1.0.1-x86_64-1.txz: Upgraded.
a/grub-2.02~beta3-x86_64-1.txz: Upgraded.
       Thanks to Heinz Wiesinger.
       Thanks to ReaperX7 for the updated dejavusansmono patch.
a/hwdata-0.291-noarch-1.txz: Upgraded.
a/less-481-x86_64-2.txz: Rebuilt.
a/minicom-2.7-x86_64-1.txz: Upgraded.
a/procps-ng-3.3.12-x86_64-1.txz: Upgraded.
a/sed-4.3-x86_64-1.txz: Upgraded.
a/splitvt-1.6.6-x86_64-1.txz: Upgraded.
a/tcsh-6.20.00-x86_64-1.txz: Upgraded.
a/util-linux-2.29-x86_64-1.txz: Upgraded.
a/xfsprogs-4.8.0-x86_64-1.txz: Upgraded.
a/xz-5.2.3-x86_64-1.txz: Upgraded.
ap/alsa-utils-1.1.3-x86_64-1.txz: Upgraded.
ap/bc-1.06.95-x86_64-4.txz: Rebuilt.
ap/bpe-2.01.00-x86_64-3.txz: Rebuilt.
ap/ghostscript-9.20-x86_64-2.txz: Rebuilt.
       Restored /usr/bin/ijs-config.
ap/gphoto2-2.5.11-x86_64-1.txz: Upgraded.
ap/gutenprint-5.2.11-x86_64-3.txz: Rebuilt.
ap/htop-2.0.2-x86_64-1.txz: Upgraded.
ap/ispell-3.4.00-x86_64-1.txz: Upgraded.
ap/joe-4.3-x86_64-1.txz: Upgraded.
ap/jove- Rebuilt.
ap/mariadb-10.0.28-x86_64-2.txz: Rebuilt.
ap/mc-4.8.18-x86_64-1.txz: Upgraded.
ap/moc-2.5.2-x86_64-1.txz: Upgraded.
ap/nano-2.7.4-x86_64-1.txz: Upgraded.
ap/pamixer-1.3.1-x86_64-3.txz: Rebuilt.
ap/powertop-2.8-x86_64-2.txz: Rebuilt.
ap/sc-7.16-x86_64-5.txz: Rebuilt.
ap/screen-4.4.0-x86_64-3.txz: Rebuilt.
ap/sqlite-3.16.1-x86_64-1.txz: Upgraded.
ap/texinfo-6.3-x86_64-2.txz: Rebuilt.
ap/vim-8.0.0161-x86_64-1.txz: Upgraded.
ap/xfsdump-3.1.6-x86_64-2.txz: Rebuilt.
ap/zsh-5.3.1-x86_64-1.txz: Upgraded.
d/clisp-2.49.20161111-x86_64-1.txz: Upgraded.
d/cmake-3.7.1-x86_64-1.txz: Upgraded.
d/cscope-15.8b-x86_64-2.txz: Rebuilt.
d/flex-2.6.3-x86_64-1.txz: Upgraded.
d/gdb-7.12-x86_64-2.txz: Rebuilt.
d/gettext-tools- Rebuilt.
d/gnu-cobol-1.1-x86_64-2.txz: Rebuilt.
d/gperf-3.1-x86_64-1.txz: Upgraded.
d/guile-2.0.13-x86_64-2.txz: Rebuilt.
d/m4-1.4.18-x86_64-1.txz: Upgraded.
d/make-4.2.1-x86_64-1.txz: Upgraded.
d/perl-5.24.0-x86_64-1.txz: Upgraded.
       Also upgraded to DBD-mysql-4.041 and TermReadKey-2.37.
d/ruby-2.4.0-x86_64-1.txz: Upgraded.
d/subversion-1.9.5-x86_64-1.txz: Upgraded.
e/emacs-25.1-x86_64-2.txz: Rebuilt.
kde/analitza-4.14.3-x86_64-3.txz: Rebuilt.
kde/calligra-2.9.11-x86_64-7.txz: Rebuilt.
kde/kdelibs-4.14.27-x86_64-1.txz: Upgraded.
kde/kig-4.14.3-x86_64-5.txz: Rebuilt.
kde/korundum-4.14.3-x86_64-4.txz: Rebuilt.
kde/lokalize-4.14.3-x86_64-3.txz: Rebuilt.
kde/perlkde-4.14.3-x86_64-3.txz: Rebuilt.
kde/perlqt-4.14.3-x86_64-3.txz: Rebuilt.
kde/qtruby-4.14.3-x86_64-5.txz: Rebuilt.
l/akonadi-1.13.0-x86_64-4.txz: Rebuilt.
l/alsa-lib-1.1.3-x86_64-1.txz: Upgraded.
l/aspell- Rebuilt.
l/boost-1.63.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/enchant-1.6.0-x86_64-2.txz: Rebuilt.
l/hunspell-1.6.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/libcaca-0.99.beta19-x86_64-1.txz: Upgraded.
l/libcap-2.25-x86_64-1.txz: Upgraded.
l/libcdio-0.94-x86_64-2.txz: Rebuilt.
l/libgphoto2-2.5.11-x86_64-1.txz: Upgraded.
l/libnjb-2.2.7-x86_64-1.txz: Upgraded.
l/libproxy-0.4.13-x86_64-1.txz: Upgraded.
l/parted-3.2-x86_64-3.txz: Rebuilt.
l/pilot-link-0.12.5-x86_64-12.txz: Rebuilt.
l/taglib-1.11.1-x86_64-1.txz: Upgraded.
l/virtuoso-ose-6.1.8-x86_64-4.txz: Rebuilt.
l/vte-0.28.2-x86_64-5.txz: Rebuilt.
l/wavpack-5.0.0-x86_64-1.txz: Upgraded.
l/zlib-1.2.10-x86_64-1.txz: Upgraded.
n/NetworkManager-1.2.6-x86_64-2.txz: Rebuilt.
n/alpine-2.20-x86_64-3.txz: Rebuilt.
n/bind-9.11.0_P2-x86_64-1.txz: Upgraded.
       This update fixes a denial-of-service vulnerability. An error in handling
       certain queries can cause an assertion failure when a server is using the
       nxdomain-redirect feature to cover a zone for which it is also providing
       authoritative service. A vulnerable server could be intentionally stopped
       by an attacker if it was using a configuration that met the criteria for
       the vulnerability and if the attacker could cause it to accept a query
       that possessed the required attributes.
       Please note: This vulnerability affects the "nxdomain-redirect" feature,
       which is one of two methods of handling NXDOMAIN redirection, and is only
       available in certain versions of BIND. Redirection using zones of type
       "redirect" is not affected by this vulnerability.
       For more information, see:
       (* Security fix *)
n/bluez-5.43-x86_64-1.txz: Upgraded.
n/elm-2.5.8-x86_64-4.txz: Rebuilt.
n/epic5-2.0.1-x86_64-1.txz: Upgraded.
n/gnupg-1.4.21-x86_64-2.txz: Rebuilt.
n/gnupg2-2.0.30-x86_64-2.txz: Rebuilt.
n/gnutls-3.5.8-x86_64-1.txz: Upgraded.
       This update fixes some bugs and security issues.
       For more information, see:
       (* Security fix *)
n/iftop-1.0pre4-x86_64-1.txz: Upgraded.
n/imapd-2.20-x86_64-3.txz: Rebuilt.
n/iptraf-ng-1.1.4-x86_64-2.txz: Rebuilt.
n/irssi-0.8.21-x86_64-1.txz: Upgraded.
       Fixed security issues that may result in a denial of service.
       For more information, see:
       (* Security fix *)
n/lftp-4.7.5-x86_64-1.txz: Upgraded.
n/libnftnl-1.0.7-x86_64-1.txz: Upgraded.
n/links-2.14-x86_64-1.txz: Upgraded.
n/lynx-2.8.8rel.2-x86_64-2.txz: Rebuilt.
n/mcabber-1.0.4-x86_64-2.txz: Rebuilt.
n/metamail-2.7-x86_64-6.txz: Rebuilt.
n/mtr-0.87-x86_64-1.txz: Upgraded.
n/mutt-1.7.2-x86_64-1.txz: Upgraded.
n/ncftp-3.2.6-x86_64-1.txz: Upgraded.
n/net-snmp-5.7.3-x86_64-4.txz: Rebuilt.
n/netkit-ftp-0.17-x86_64-3.txz: Rebuilt.
n/netkit-ntalk-0.17-x86_64-4.txz: Rebuilt.
n/netwatch-1.3.1_2-x86_64-2.txz: Rebuilt.
n/nftables-0.7-x86_64-1.txz: Upgraded.
n/nn-6.7.3-x86_64-4.txz: Rebuilt.
n/ntp-4.2.8p9-x86_64-2.txz: Rebuilt.
n/obexftp-0.24.2-x86_64-1.txz: Upgraded.
n/openobex-1.7.2-x86_64-1.txz: Upgraded.
n/pinentry-1.0.0-x86_64-2.txz: Rebuilt.
n/proftpd-1.3.5b-x86_64-2.txz: Rebuilt.
n/snownews-1.5.12-x86_64-3.txz: Rebuilt.
n/telnet-0.17-x86_64-3.txz: Rebuilt.
n/tftp-hpa-5.2-x86_64-3.txz: Rebuilt.
n/tin-2.4.1-x86_64-1.txz: Upgraded.
n/trn-3.6-x86_64-2.txz: Removed.
n/wpa_supplicant-2.6-x86_64-1.txz: Upgraded.
n/ytalk-3.3.0-x86_64-3.txz: Rebuilt.
x/xf86-video-intel-git_20170103_028c946d-x86_64-1.txz: Upgraded.
x/xorg-server-1.19.1-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.19.1-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.19.1-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.19.1-x86_64-1.txz: Upgraded.
x/xterm-327-x86_64-1.txz: Upgraded.
xap/MPlayer-1.2_20160125-x86_64-4.txz: Rebuilt.
       Upgraded to ffmpeg-2.8.10.
xap/ddd-3.3.12-x86_64-5.txz: Rebuilt.
xap/fvwm-2.6.7-x86_64-1.txz: Upgraded.
xap/gftp-2.0.19-x86_64-5.txz: Rebuilt.
xap/gnuchess-6.2.4-x86_64-2.txz: Rebuilt.
xap/gparted-0.27.0-x86_64-1.txz: Upgraded.
xap/hexchat-2.12.4-x86_64-1.txz: Upgraded.
xap/imagemagick-6.9.7_3-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
xap/pidgin-2.11.0-x86_64-2.txz: Rebuilt.
xap/vim-gvim-8.0.0161-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.6-x86_64-9.txz: Rebuilt.
       Upgraded to ffmpeg-2.8.10.
xap/xine-ui-0.99.9-x86_64-2.txz: Rebuilt.
xap/xlockmore-5.50-x86_64-1.txz: Upgraded.
extra/brltty/brltty-5.4-x86_64-2.txz: Rebuilt.
       Patched /lib/udev/rules.d/40-usb-brltty.rules to fix a syntax error.
       Thanks to Willy Sudiarto Raharjo.
Fri Dec 30 19:29:13 UTC 2016
a/aaa_elflibs-14.2-x86_64-26.txz: Rebuilt.
a/btrfs-progs-v4.9-x86_64-1.txz: Upgraded.
ap/hplip-3.16.11-x86_64-1.txz: Upgraded.
ap/tmux-2.3-x86_64-1.txz: Upgraded.
l/elfutils-0.168-x86_64-1.txz: Upgraded.
l/libpng-1.6.27-x86_64-1.txz: Upgraded.
       This release fixes an old NULL pointer dereference bug in png_set_text_2()
       discovered and patched by Patrick Keshishian. The potential "NULL
       dereference" bug has existed in libpng since version 0.71 of June 26, 1995.
       To be vulnerable, an application has to load a text chunk into the png
       structure, then delete all text, then add another text chunk to the same
       png structure, which seems to be an unlikely sequence, but it has happened.
       For more information, see:
       (* Security fix *)
l/seamonkey-solibs-2.46-x86_64-1.txz: Upgraded.
n/openvpn-2.4.0-x86_64-1.txz: Upgraded.
x/libXpm-3.5.12-x86_64-1.txz: Upgraded.
x/libdrm-2.4.74-x86_64-1.txz: Upgraded.
x/mesa-13.0.2-x86_64-1.txz: Upgraded.
x/xf86-video-dummy-0.3.8-x86_64-1.txz: Upgraded.
x/xf86-video-intel-git_20161117_169c74fa-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-45.6.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/seamonkey-2.46-x86_64-1.txz: Upgraded.
       This update contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xfce/xfce4-panel-4.12.1-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.12.1-x86_64-1.txz: Upgraded.
xfce/xfconf-4.12.1-x86_64-1.txz: Upgraded.
Wed Dec 28 21:05:19 UTC 2016
ap/nano-2.7.3-x86_64-1.txz: Upgraded.
d/python-2.7.13-x86_64-1.txz: Upgraded.
       This release fixes security issues:
       Issue #27850: Remove 3DES from ssl module's default cipher list to counter
       measure sweet32 attack (CVE-2016-2183).
       Issue #27568: Prevent HTTPoxy attack (CVE-2016-1000110). Ignore the
       HTTP_PROXY variable when REQUEST_METHOD environment is set, which indicates
       that the script is in CGI mode.
       For more information, see:
       (* Security fix *)
n/samba-4.5.3-x86_64-1.txz: Upgraded.
       This release fixes security issues:
       CVE-2016-2123 (Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer
       Overflow Remote Code Execution Vulnerability).
       CVE-2016-2125 (Unconditional privilege delegation to Kerberos servers
       in trusted realms).
       CVE-2016-2126 (Flaws in Kerberos PAC validation can trigger privilege
       For more information, see:
       (* Security fix *)
Sat Dec 24 18:14:51 UTC 2016
a/aaa_elflibs-14.2-x86_64-25.txz: Upgraded.
l/expat-2.2.0-x86_64-1.txz: Upgraded.
       This update fixes bugs and security issues:
       Multiple integer overflows in XML_GetBuffer.
       Fix crash on malformed input.
       Improve insufficient fix to CVE-2015-1283 / CVE-2015-2716.
       Use more entropy for hash initialization.
       Resolve troublesome internal call to srand.
       For more information, see:
       (* Security fix *)
l/ncurses-6.0-x86_64-2.txz: Rebuilt.
       Fixed install script to correctly remove "lint" from the 5.x package.
Sat Dec 24 02:36:05 UTC 2016
a/aaa_elflibs-14.2-x86_64-24.txz: Rebuilt.
       Added,,,,,,,,,, and
l/libtermcap-1.2.3-x86_64-7.txz: Removed.
       Replaced by equivalent functionality in the ncurses package.
l/ncurses-6.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
       Rebuild of linked binaries pending, but the old library versions are
       in the aaa_elflibs package.
l/readline-7.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
       Rebuild of linked binaries pending, but the old library versions are
       in the aaa_elflibs package.
n/curl-7.52.1-x86_64-1.txz: Upgraded.
n/gpa-0.9.10-x86_64-1.txz: Upgraded.
n/gpgme-1.7.1-x86_64-1.txz: Upgraded.
n/httpd-2.4.25-x86_64-1.txz: Upgraded.
       This update fixes the following security issues:
       * CVE-2016-8740: mod_http2: Mitigate DoS memory exhaustion via endless
       CONTINUATION frames.
       * CVE-2016-5387: core: Mitigate [f]cgi "httpoxy" issues.
       * CVE-2016-2161: mod_auth_digest: Prevent segfaults during client entry
       allocation when the shared memory space is exhausted.
       * CVE-2016-0736: mod_session_crypto: Authenticate the session data/cookie
       with a MAC (SipHash) to prevent deciphering or tampering with a padding
       oracle attack.
       * CVE-2016-8743: Enforce HTTP request grammar corresponding to RFC7230 for
       request lines and request headers, to prevent response splitting and
       cache pollution by malicious clients or downstream proxies.
       For more information, see:
       (* Security fix *)
n/lftp-4.7.4-x86_64-1.txz: Upgraded.
n/libassuan-2.4.3-x86_64-1.txz: Upgraded.
n/libgcrypt-1.7.5-x86_64-1.txz: Upgraded.
n/libksba-1.3.5-x86_64-1.txz: Upgraded.
n/nettle-3.3-x86_64-1.txz: Upgraded.
n/nmap-7.40-x86_64-1.txz: Upgraded.
n/openssh-7.4p1-x86_64-1.txz: Upgraded.
       This is primarily a bugfix release, and also addresses security issues.
       ssh-agent(1): Will now refuse to load PKCS#11 modules from paths outside
       a trusted whitelist.
       sshd(8): When privilege separation is disabled, forwarded Unix-domain
       sockets would be created by sshd(8) with the privileges of 'root'.
       sshd(8): Avoid theoretical leak of host private key material to
       privilege-separated child processes via realloc().
       sshd(8): The shared memory manager used by pre-authentication compression
       support had a bounds checks that could be elided by some optimising
       compilers to potentially allow attacks against the privileged monitor.
       process from the sandboxed privilege-separation process.
       sshd(8): Validate address ranges for AllowUser and DenyUsers directives at
       configuration load time and refuse to accept invalid ones. It was
       previously possible to specify invalid CIDR address ranges
       (e.g. user@ and these would always match, possibly resulting
       in granting access where it was not intended.
       For more information, see:
       (* Security fix *)
n/pinentry-1.0.0-x86_64-1.txz: Upgraded.
xfce/xfce4-weather-plugin-0.8.8-x86_64-1.txz: Upgraded.
       Package upgraded to fix the API used to fetch weather data.
       Thanks to Robby Workman.
testing/packages/gcc-6.3.0-x86_64-1.txz: Upgraded.
testing/packages/gcc-g++-6.3.0-x86_64-1.txz: Upgraded.
testing/packages/gcc-gfortran-6.3.0-x86_64-1.txz: Upgraded.
testing/packages/gcc-gnat-6.3.0-x86_64-1.txz: Upgraded.
testing/packages/gcc-go-6.3.0-x86_64-1.txz: Upgraded.
testing/packages/gcc-java-6.3.0-x86_64-1.txz: Upgraded.
testing/packages/gcc-objc-6.3.0-x86_64-1.txz: Upgraded.
Sun Dec 18 05:20:25 UTC 2016
a/glibc-zoneinfo-2016j-noarch-1.txz: Upgraded.
Tue Dec 13 22:14:13 UTC 2016
Thanks to Robby Workman for most of these updates.
a/acpid-2.0.28-x86_64-1.txz: Upgraded.
a/cryptsetup-1.7.3-x86_64-1.txz: Upgraded.
a/dbus-1.10.14-x86_64-1.txz: Upgraded.
a/lvm2-2.02.168-x86_64-1.txz: Upgraded.
ap/alsa-utils-1.1.2-x86_64-1.txz: Upgraded.
ap/man-pages-4.09-noarch-1.txz: Upgraded.
d/git-2.11.0-x86_64-1.txz: Upgraded.
l/alsa-lib-1.1.2-x86_64-1.txz: Upgraded.
l/dbus-glib-0.108-x86_64-1.txz: Upgraded.
n/NetworkManager-1.2.6-x86_64-1.txz: Upgraded.
n/bluez-5.42-x86_64-1.txz: Upgraded.
n/conntrack-tools-1.4.4-x86_64-1.txz: Upgraded.
n/libnetfilter_acct-1.0.3-x86_64-1.txz: Upgraded.
n/libnetfilter_conntrack-1.0.6-x86_64-1.txz: Upgraded.
n/nfacct-1.0.2-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-50.1.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/network-manager-applet-1.2.6-x86_64-1.txz: Upgraded.
extra/source/flashplayer-plugin/flashplayer-plugin.SlackBuild: Updated.
       Fixed filename and URL for new version 24. Thanks to alienBOB.
Mon Dec 12 21:25:50 UTC 2016
a/coreutils-8.26-x86_64-1.txz: Upgraded.
a/grep-2.27-x86_64-1.txz: Upgraded.
a/kernel-firmware-20161211git-noarch-1.txz: Upgraded.
a/kernel-generic-4.4.38-x86_64-1.txz: Upgraded.
       This kernel fixes a security issue with a race condition in
       net/packet/af_packet.c that can be exploited to gain kernel code execution
       from unprivileged processes.
       Thanks to Philip Pettersson for discovering the bug and providing a patch.
       Be sure to upgrade your initrd after upgrading the kernel packages.
       If you use lilo to boot your machine, be sure lilo.conf points to the correct
       kernel and initrd and run lilo as root to update the bootloader.
       If you use elilo to boot your machine, you should run eliloconfig to copy the
       kernel and initrd to the EFI System Partition.
       For more information, see:
       (* Security fix *)
a/kernel-huge-4.4.38-x86_64-1.txz: Upgraded.
       (* Security fix *)
a/kernel-modules-4.4.38-x86_64-1.txz: Upgraded.
ap/nano-2.7.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.38-x86-1.txz: Upgraded.
k/kernel-source-4.4.38-noarch-1.txz: Upgraded.
       (* Security fix *)
l/gsl-2.3-x86_64-1.txz: Upgraded.
l/loudmouth-1.5.3-x86_64-1.txz: Upgraded.
n/mcabber-1.0.4-x86_64-1.txz: Upgraded.
       This update fixes a security issue which can lead to a malicious actor
       MITMing a conversation, or adding themselves as an entity on a third
       parties roster (thereby granting themselves the associated priviledges
       such as observing when the user is online).
       For more information, see:
       (* Security fix *)
n/php-5.6.29-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Thu Dec 1 08:49:20 UTC 2016
d/intltool-0.51.0-x86_64-3.txz: Rebuilt.
       Added a patch to fix issues when $(builddir) != $(srcdir). This avoids
       possible build failures when intltool is used with automake >= 1.15.
       Thanks to Willy Sudiarto Raharjo.
xap/mozilla-firefox-50.0.2-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/mozilla-thunderbird-45.5.1-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Mon Nov 21 19:21:22 UTC 2016
n/ntp-4.2.8p9-x86_64-1.txz: Upgraded.
       In addition to bug fixes and enhancements, this release fixes the
       following 1 high- (Windows only :-), 2 medium-, 2 medium-/low, and
       5 low-severity vulnerabilities, and provides 28 other non-security
       fixes and improvements.
       CVE-2016-9311: Trap crash
       CVE-2016-9310: Mode 6 unauthenticated trap info disclosure and DDoS vector
       CVE-2016-7427: Broadcast Mode Replay Prevention DoS
       CVE-2016-7428: Broadcast Mode Poll Interval Enforcement DoS
       CVE-2016-9312: Windows: ntpd DoS by oversized UDP packet
       CVE-2016-7431: Regression: 010-origin: Zero Origin Timestamp Bypass
       CVE-2016-7434: Null pointer dereference in _IO_str_init_static_internal()
       CVE-2016-7429: Interface selection attack
       CVE-2016-7426: Client rate limiting and server responses
       CVE-2016-7433: Reboot sync calculation problem
       For more information, see:
       (* Security fix *)
Sat Nov 19 22:45:38 UTC 2016
a/grep-2.26-x86_64-2.txz: Rebuilt.
       Reverted a speedup patch that is causing regressions when output is directed
       to /dev/null. Thanks to SeB.
Sat Nov 19 03:33:33 UTC 2016
a/bash-4.4.005-x86_64-1.txz: Upgraded.
a/kernel-firmware-20161118git-noarch-1.txz: Upgraded.
a/kernel-generic-4.4.32-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.32-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.32-x86_64-1.txz: Upgraded.
ap/ghostscript-9.20-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.32-x86-1.txz: Upgraded.
k/kernel-source-4.4.32-noarch-1.txz: Upgraded.
n/nmap-7.31-x86_64-1.txz: Upgraded.
n/samba-4.5.1-x86_64-1.txz: Upgraded.
x/freeglut-3.0.0-x86_64-1.txz: Upgraded.
x/libXfont2-2.0.1-x86_64-1.txz: Added.
x/libdrm-2.4.73-x86_64-1.txz: Upgraded.
x/libxcb-1.12-x86_64-1.txz: Upgraded.
x/mesa-13.0.1-x86_64-1.txz: Upgraded.
x/xcb-proto-1.12-x86_64-1.txz: Upgraded.
x/xcb-util-cursor-0.1.3-x86_64-1.txz: Upgraded.
x/xf86-input-acecad-1.5.0-x86_64-10.txz: Rebuilt.
x/xf86-input-evdev-2.10.4-x86_64-1.txz: Upgraded.
x/xf86-input-joystick-1.6.3-x86_64-1.txz: Upgraded.
x/xf86-input-keyboard-1.9.0-x86_64-1.txz: Upgraded.
x/xf86-input-mouse-1.9.2-x86_64-1.txz: Upgraded.
x/xf86-input-penmount-1.5.0-x86_64-10.txz: Rebuilt.
x/xf86-input-synaptics-1.9.0-x86_64-1.txz: Upgraded.
x/xf86-input-vmmouse-13.1.0-x86_64-5.txz: Rebuilt.
x/xf86-input-void-1.4.0-x86_64-10.txz: Rebuilt.
x/xf86-input-wacom-0.33.0-x86_64-2.txz: Rebuilt.
x/xf86-video-amdgpu-1.2.0-x86_64-1.txz: Upgraded.
x/xf86-video-apm-1.2.5-x86_64-9.txz: Rebuilt.
x/xf86-video-ark-0.7.5-x86_64-9.txz: Rebuilt.
x/xf86-video-ast-1.1.5-x86_64-3.txz: Rebuilt.
x/xf86-video-ati-7.8.0-x86_64-1.txz: Upgraded.
x/xf86-video-chips-1.2.6-x86_64-2.txz: Removed.
x/xf86-video-cirrus-1.5.3-x86_64-3.txz: Rebuilt.
x/xf86-video-dummy-0.3.7-x86_64-6.txz: Rebuilt.
x/xf86-video-glint-1.2.8-x86_64-8.txz: Removed.
x/xf86-video-i128-1.3.6-x86_64-9.txz: Rebuilt.
x/xf86-video-i740-1.3.5-x86_64-3.txz: Removed.
x/xf86-video-intel-git_20161115_a1a0f76-x86_64-1.txz: Upgraded.
x/xf86-video-mach64-6.9.5-x86_64-3.txz: Rebuilt.
x/xf86-video-mga-1.6.4-x86_64-3.txz: Removed.
x/xf86-video-neomagic-1.2.9-x86_64-3.txz: Rebuilt.
x/xf86-video-nouveau-1.0.13-x86_64-1.txz: Upgraded.
x/xf86-video-nv-2.1.20-x86_64-9.txz: Removed.
x/xf86-video-openchrome-0.5.0-x86_64-2.txz: Rebuilt.
x/xf86-video-r128-6.10.1-x86_64-1.txz: Removed.
x/xf86-video-rendition-4.2.6-x86_64-2.txz: Rebuilt.
x/xf86-video-s3-0.6.5-x86_64-9.txz: Rebuilt.
x/xf86-video-s3virge-1.10.7-x86_64-3.txz: Rebuilt.
x/xf86-video-savage-2.3.8-x86_64-2.txz: Removed.
x/xf86-video-siliconmotion-1.7.8-x86_64-2.txz: Removed.
x/xf86-video-sis-0.10.8-x86_64-2.txz: Removed.
x/xf86-video-sisusb-0.9.6-x86_64-9.txz: Rebuilt.
x/xf86-video-tdfx-1.4.6-x86_64-3.txz: Removed.
x/xf86-video-tga-1.2.2-x86_64-9.txz: Rebuilt.
x/xf86-video-trident-1.3.7-x86_64-3.txz: Removed.
x/xf86-video-tseng-1.2.5-x86_64-9.txz: Rebuilt.
x/xf86-video-v4l-0.2.0-x86_64-14.txz: Rebuilt.
x/xf86-video-vesa-2.3.4-x86_64-3.txz: Rebuilt.
x/xf86-video-vmware-13.2.1-x86_64-1.txz: Upgraded.
x/xf86-video-voodoo-1.2.5-x86_64-10.txz: Rebuilt.
x/xf86-video-xgi-1.6.1-x86_64-2.txz: Removed.
x/xf86-video-xgixp-1.8.1-x86_64-8.txz: Removed.
x/xorg-server-1.19.0-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.19.0-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.19.0-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.19.0-x86_64-1.txz: Upgraded.
x/xproto-7.0.31-noarch-1.txz: Upgraded.
x/xterm-326-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-50.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
extra/tigervnc/tigervnc-1.7.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Fri Nov 4 03:31:38 UTC 2016
a/glibc-zoneinfo-2016i-noarch-1.txz: Upgraded.
ap/nano-2.7.1-x86_64-1.txz: Upgraded.
ap/vim-8.0.0055-x86_64-1.txz: Upgraded.
l/libcdio-paranoia-10.2+0.93+1-x86_64-2.txz: Rebuilt.
n/bind-9.10.4_P4-x86_64-1.txz: Upgraded.
       This update fixes a denial-of-service vulnerability. A defect in BIND's
       handling of responses containing a DNAME answer can cause a resolver to exit
       after encountering an assertion failure in db.c or resolver.c. A server
       encountering either of these error conditions will stop, resulting in denial
       of service to clients. The risk to authoritative servers is minimal;
       recursive servers are chiefly at risk.
       For more information, see:
       (* Security fix *)
n/curl-7.51.0-x86_64-1.txz: Upgraded.
       This release fixes security issues:
       CVE-2016-8615: cookie injection for other servers
       CVE-2016-8616: case insensitive password comparison
       CVE-2016-8617: OOB write via unchecked multiplication
       CVE-2016-8618: double-free in curl_maprintf
       CVE-2016-8619: double-free in krb5 code
       CVE-2016-8620: glob parser write/read out of bounds
       CVE-2016-8621: curl_getdate read out of bounds
       CVE-2016-8622: URL unescape heap overflow via integer truncation
       CVE-2016-8623: Use-after-free via shared cookies
       CVE-2016-8624: invalid URL parsing with '#'
       CVE-2016-8625: IDNA 2003 makes curl use wrong host
       For more information, see:
       (* Security fix *)
xap/gnuchess-6.2.4-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.0.0055-x86_64-1.txz: Upgraded.
Mon Oct 31 23:38:24 UTC 2016
a/grep-2.26-x86_64-1.txz: Upgraded.
a/kernel-generic-4.4.29-x86_64-1.txz: Upgraded.
       Fixes a security issue (Dirty COW).
       (* Security fix *)
a/kernel-huge-4.4.29-x86_64-1.txz: Upgraded.
       Fixes a security issue (Dirty COW).
       (* Security fix *)
a/kernel-modules-4.4.29-x86_64-1.txz: Upgraded.
ap/mariadb-10.0.28-x86_64-1.txz: Upgraded.
       This update fixes several security issues.
       For more information, see:
       (* Security fix *)
d/gdb-7.12-x86_64-1.txz: Upgraded.
d/guile-2.0.13-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.29-x86-1.txz: Upgraded.
k/kernel-source-4.4.29-noarch-1.txz: Upgraded.
       This kernel fixes a security issue known as "Dirty COW". A race
       condition was found in the way the Linux kernel's memory subsystem
       handled the copy-on-write (COW) breakage of private read-only
       memory mappings. An unprivileged local user could use this flaw to
       gain write access to otherwise read-only memory mappings and thus
       increase their privileges on the system.
       For more information, see:
       (* Security fix *)
l/libcdio-0.94-x86_64-1.txz: Upgraded.
n/nmap-7.30-x86_64-1.txz: Upgraded.
n/php-5.6.27-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
x/libX11-1.6.4-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause out of boundary
       memory read in XGetImage() or write in XListFonts().
       Affected versions libX11 <= 1.6.3.
       For more information, see:
       (* Security fix *)
x/libXfixes-5.0.3-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause an integer
       overflow on 32 bit architectures.
       Affected versions : libXfixes <= 5.0.2.
       For more information, see:
       (* Security fix *)
x/libXi-1.7.8-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause out of boundary
       memory access or endless loops (Denial of Service).
       Affected versions libXi <= 1.7.6.
       For more information, see:
       (* Security fix *)
x/libXrandr-1.5.1-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause out of boundary
       memory writes.
       Affected versions: libXrandr <= 1.5.0.
       For more information, see:
       (* Security fix *)
x/libXrender-0.9.10-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause out of boundary
       memory writes.
       Affected version: libXrender <= 0.9.9.
       For more information, see:
       (* Security fix *)
x/libXtst-1.2.3-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause out of boundary
       memory access or endless loops (Denial of Service).
       Affected version libXtst <= 1.2.2.
       For more information, see:
       (* Security fix *)
x/libXv-1.0.11-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause out of boundary
       memory and memory corruption.
       Affected version libXv <= 1.0.10.
       For more information, see:
       (* Security fix *)
x/libXvMC-1.0.10-x86_64-1.txz: Upgraded.
       Insufficient validation of data from the X server can cause a one byte buffer
       read underrun.
       Affected version: libXvMC <= 1.0.9.
       For more information, see:
       (* Security fix *)
xap/mozilla-firefox-49.0.2-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/xscreensaver-5.36-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Sat Oct 1 17:11:13 UTC 2016
a/kernel-firmware-20161001git-noarch-1.txz: Upgraded.
a/kernel-generic-4.4.23-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.23-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.23-x86_64-1.txz: Upgraded.
a/lvm2-2.02.166-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.23-x86-1.txz: Upgraded.
k/kernel-source-4.4.23-noarch-1.txz: Upgraded.
n/mutt-1.7.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-45.4.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Wed Sep 28 23:24:37 UTC 2016
a/glibc-zoneinfo-2016g-noarch-1.txz: Upgraded.
       This package provides the latest timezone updates.
l/mpfr-3.1.5-x86_64-1.txz: Upgraded.
Tue Sep 27 19:16:56 UTC 2016
ap/hplip-3.16.9-x86_64-1.txz: Upgraded.
       Reenabled parallel port support. Thanks to Jas for the bug report.
n/bind-9.10.4_P3-x86_64-1.txz: Upgraded.
       This update fixes a denial-of-service vulnerability. Testing by ISC has
       uncovered a critical error condition which can occur when a nameserver is
       constructing a response. A defect in the rendering of messages into
       packets can cause named to exit with an assertion failure in buffer.c while
       constructing a response to a query that meets certain criteria.
       For more information, see:
       (* Security fix *)
xap/gnuchess-6.2.3-x86_64-1.txz: Upgraded.
       Upgraded to gnuchess-6.2.3 and xboard-4.9.1.
Mon Sep 26 18:14:08 UTC 2016
a/openssl-solibs-1.0.2j-x86_64-1.txz: Upgraded.
a/pkgtools-14.2-noarch-13.txz: Rebuilt.
       removepkg: Fixed removing filenames containing "%".
       Thanks to SeB for the bug report, and to Jim Hawkins for the patch.
n/openssl-1.0.2j-x86_64-1.txz: Upgraded.
       This update fixes a security issue:
       Missing CRL sanity check (CVE-2016-7052)
       For more information, see:
       (* Security fix *)
Sun Sep 25 02:32:25 UTC 2016
a/kernel-firmware-20160924git-noarch-1.txz: Upgraded.
a/kernel-generic-4.4.22-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.22-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.22-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.22-x86-1.txz: Upgraded.
k/kernel-source-4.4.22-noarch-1.txz: Upgraded.
n/sshfs-2.8-x86_64-1.txz: Added.
       Thanks to Heinz Wiesinger.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Fri Sep 23 23:30:53 UTC 2016
n/php-5.6.26-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
Thu Sep 22 18:38:07 UTC 2016
a/openssl-solibs-1.0.2i-x86_64-1.txz: Upgraded.
n/openssl-1.0.2i-x86_64-1.txz: Upgraded.
       This update fixes denial-of-service and other security issues.
       For more information, see:
       (* Security fix *)
Wed Sep 21 21:10:52 UTC 2016
n/irssi-0.8.20-x86_64-1.txz: Upgraded.
       This update fixes two remote crash and heap corruption vulnerabilites
       in Irssi's format parsing code. Impact: Remote crash and heap
       corruption. Remote code execution seems difficult since only Nuls are
       written. Bugs discovered by, and patches provided by Gabriel Campana
       and Adrien Guinet from Quarkslab.
       For more information, see:
       (* Security fix *)
Wed Sep 21 15:54:06 UTC 2016
a/mkinitrd-1.4.8-x86_64-9.txz: Rebuilt.
       When generating the initrd, include dmsetup whenever LUKS is requested.
       Thanks to TracyTiger for the bug report and Eric Hameleers for the patch.
e/emacs-25.1-x86_64-1.txz: Upgraded.
l/qt-4.8.7-x86_64-5.txz: Rebuilt.
       In the .prl files, make sure to use -L/usr/X11R6/lib64 on 64-bit to avoid
       ld warnings when using qmake on a multilib system.
       Thanks to Jonathan Woithe for the bug report and fix.
n/network-scripts-14.2-noarch-4.txz: Rebuilt. Use return (not continue) to leave the if_up() function.
       Thanks to Tim Thomas for the bug report.
xap/mozilla-firefox-49.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/pidgin-2.11.0-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
Thu Sep 15 22:54:52 UTC 2016
a/bash-4.4.0-x86_64-1.txz: Upgraded.
a/btrfs-progs-v4.7.2-x86_64-1.txz: Upgraded.
a/e2fsprogs-1.43.3-x86_64-1.txz: Upgraded.
a/pkgtools-14.2-noarch-12.txz: Rebuilt.
       removepkg: Fixed removing packages with >= 3 hyphens in the package name
       when using just the package name rather than the full name including
       version, arch, and build.
       Thanks to coralfang for the bug report, Jim Hawkins and Stuart Winter for
       the patch, and SeB for testing and feedback.
       removepkg: Handle filenames that contain backslashes.
       Thanks to aaazen for the bug report and patch.
ap/vim-8.0.0005-x86_64-1.txz: Upgraded.
n/curl-7.50.3-x86_64-1.txz: Upgraded.
       Fixed heap overflows in four libcurl functions: curl_escape(),
       curl_easy_escape(), curl_unescape() and curl_easy_unescape().
       For more information, see:
       (* Security fix *)
xap/vim-gvim-8.0.0005-x86_64-1.txz: Upgraded.
Tue Sep 13 18:13:32 UTC 2016
ap/mariadb-10.0.27-x86_64-1.txz: Upgraded.
       This update fixes a critical vulnerability which can allow local and
       remote attackers to inject malicious settings into MySQL configuration
       files (my.cnf). A successful exploitation could allow attackers to
       execute arbitrary code with root privileges which would then allow them
       to fully compromise the server.
       This issue was discovered and reported by Dawid Golunski.
       For more information, see:
       (* Security fix *)
ap/vim-8.0.0003-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.0.0003-x86_64-1.txz: Upgraded.
Mon Sep 12 18:39:03 UTC 2016
ap/texinfo-6.3-x86_64-1.txz: Upgraded.
d/guile-2.0.12-x86_64-2.txz: Rebuilt.
       Match timestamps across all $ARCH on *.go and *.scm files, otherwise
       on multilib systems the compiled (go) files may be detected as older
       than the source (scm) files, causing guile to attempt to recompile
       itself with every use.
l/sdl-1.2.15-x86_64-5.txz: Rebuilt.
       Fixed a regression that broke MOD support. Thanks to B Watson.
x/libXfont-1.5.2-x86_64-1.txz: Upgraded.
x/mesa-12.0.2-x86_64-1.txz: Upgraded.
Sat Sep 10 18:04:42 UTC 2016
l/gtk+2-2.24.31-x86_64-1.txz: Upgraded.
       This update fixes a security issue: Integer overflow in the
       gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c allows remote
       attackers to cause a denial of service (crash) via a large image file,
       which triggers a large memory allocation.
       For more information, see:
       (* Security fix *)
n/gnutls-3.4.15-x86_64-1.txz: Upgraded.
       libgnutls: Corrected the comparison of the serial size in OCSP response.
       Previously the OCSP certificate check wouldn't verify the serial length
       and could succeed in cases it shouldn't (GNUTLS-SA-2016-3).
       Reported by Stefan Buehler.
       For more information, see:
       (* Security fix *)
Thu Sep 8 21:35:02 UTC 2016
a/kernel-generic-4.4.20-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.20-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.20-x86_64-1.txz: Upgraded.
a/kmod-23-x86_64-2.txz: Rebuilt.
a/util-linux-2.28.2-x86_64-1.txz: Upgraded.
ap/hplip-3.16.8-x86_64-1.txz: Upgraded.
ap/nano-2.7.0-x86_64-1.txz: Upgraded.
ap/pamixer-1.3.1-x86_64-2.txz: Rebuilt.
ap/rpm- Rebuilt.
ap/vim-7.4.2342-x86_64-1.txz: Upgraded.
d/Cython-0.24.1-x86_64-1.txz: Upgraded.
d/gdb-7.11.1-x86_64-2.txz: Rebuilt.
d/kernel-headers-4.4.20-x86-1.txz: Upgraded.
d/mercurial-3.9.1-x86_64-1.txz: Upgraded.
d/python-2.7.12-x86_64-1.txz: Upgraded.
       Compiled using --enable-unicode=ucs4.
       The upstream default for Python Unicode is ucs2, but ucs4 is more widely
       used and recommended now. Any Python scripts or binaries that use UCS-2
       will need to be recompiled. These can be identified with the following
       grep command: grep -r -l PyUnicodeUCS2 /usr 2> /dev/null
k/kernel-source-4.4.20-noarch-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-6.txz: Rebuilt.
kde/kate-4.14.3-x86_64-3.txz: Rebuilt.
kde/kdev-python-1.7.2-x86_64-2.txz: Rebuilt.
kde/kig-4.14.3-x86_64-4.txz: Rebuilt.
kde/kross-interpreters-4.14.3-x86_64-3.txz: Rebuilt.
kde/pykde4-4.14.3-x86_64-4.txz: Rebuilt.
kde/superkaramba-4.14.3-x86_64-3.txz: Rebuilt.
l/PyQt-4.11.4-x86_64-2.txz: Rebuilt.
l/akonadi-1.13.0-x86_64-3.txz: Rebuilt.
l/boost-1.61.0-x86_64-1.txz: Upgraded.
       Shared library .so-version bump.
l/dbus-python-1.2.4-x86_64-2.txz: Rebuilt.
l/gdbm-1.12-x86_64-2.txz: Rebuilt.
l/glib2-2.46.2-x86_64-4.txz: Rebuilt.
l/gobject-introspection-1.46.0-x86_64-2.txz: Rebuilt.
l/libxml2-2.9.4-x86_64-3.txz: Rebuilt.
l/pilot-link-0.12.5-x86_64-11.txz: Rebuilt.
l/pycups-1.9.73-x86_64-2.txz: Rebuilt.
l/pycurl-7.43.0-x86_64-2.txz: Rebuilt.
l/pygobject-2.28.6-x86_64-3.txz: Rebuilt.
l/pygobject3-3.18.2-x86_64-2.txz: Rebuilt.
l/pygtk-2.24.0-x86_64-3.txz: Rebuilt.
l/python-pillow-3.0.0-x86_64-2.txz: Rebuilt.
l/sip-4.18.1-x86_64-1.txz: Upgraded.
n/php-5.6.25-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
n/samba-4.5.0-x86_64-1.txz: Upgraded.
xap/blueman-2.0.4-x86_64-2.txz: Rebuilt.
xap/gimp-2.8.18-x86_64-2.txz: Rebuilt.
xap/vim-gvim-7.4.2342-x86_64-1.txz: Upgraded.
extra/brltty/brltty-5.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Wed Aug 31 20:43:10 UTC 2016
l/gsl-2.2.1-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-45.3.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Tue Aug 30 22:10:31 UTC 2016
testing/packages/gcc-6.2.0-x86_64-1.txz: Added.
testing/packages/gcc-g++-6.2.0-x86_64-1.txz: Added.
testing/packages/gcc-gfortran-6.2.0-x86_64-1.txz: Added.
testing/packages/gcc-gnat-6.2.0-x86_64-1.txz: Added.
testing/packages/gcc-go-6.2.0-x86_64-1.txz: Added.
testing/packages/gcc-java-6.2.0-x86_64-1.txz: Added.
       Please note that if you install this package, gettext (specifically the
       gettext-tools package) will need to be recompiled.
testing/packages/gcc-objc-6.2.0-x86_64-1.txz: Added.
Mon Aug 29 22:51:27 UTC 2016
a/gawk-4.1.4-x86_64-1.txz: Upgraded.
l/gsl-2.2-x86_64-1.txz: Upgraded.
Wed Aug 24 19:37:40 UTC 2016
xap/mozilla-firefox-48.0.2-x86_64-1.txz: Upgraded.
Tue Aug 23 19:45:33 UTC 2016
a/glibc-solibs-2.24-x86_64-2.txz: Rebuilt.
a/kernel-firmware-20160823git-noarch-1.txz: Upgraded.
a/kernel-generic-4.4.19-x86_64-1.txz: Upgraded.
       A flaw was found in the implementation of the Linux kernels handling of
       networking challenge ack where an attacker is able to determine the shared
       counter. This may allow an attacker located on different subnet to inject
       or take over a TCP connection between a server and client without having to
       be a traditional Man In the Middle (MITM) style attack.
       For more information, see:
       (* Security fix *)
a/kernel-huge-4.4.19-x86_64-1.txz: Upgraded.
       A flaw was found in the implementation of the Linux kernels handling of
       networking challenge ack where an attacker is able to determine the shared
       counter. This may allow an attacker located on different subnet to inject
       or take over a TCP connection between a server and client without having to
       be a traditional Man In the Middle (MITM) style attack.
       For more information, see:
       (* Security fix *)
a/kernel-modules-4.4.19-x86_64-1.txz: Upgraded.
ap/diffutils-3.5-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.72-x86_64-1.txz: Upgraded.
       Thanks to Stuart Winter.
ap/screen-4.4.0-x86_64-2.txz: Rebuilt.
       Reverted a change to /etc/ that prevented the console from being
       cleared when a screen session was detached. Thanks to Stuart Winter.
d/binutils-2.27-x86_64-2.txz: Rebuilt.
       Recompiled with --disable-compressed-debug-sections, since other tools are
       not yet capable of parsing that.
       Thanks to Vincent Batts, Heinz Wiesinger, and Stuart Winter.
d/kernel-headers-4.4.19-x86-1.txz: Upgraded.
k/kernel-source-4.4.19-noarch-1.txz: Upgraded.
       A flaw was found in the implementation of the Linux kernels handling of
       networking challenge ack where an attacker is able to determine the shared
       counter. This may allow an attacker located on different subnet to inject
       or take over a TCP connection between a server and client without having to
       be a traditional Man In the Middle (MITM) style attack.
       For more information, see:
       (* Security fix *)
l/glib2-2.46.2-x86_64-3.txz: Rebuilt.
       Applied upstream patch to fix a use-before-allocate bug in libgio. Without
       this fix, Thunar will crash if $HOME is on an NFS volume.
       Thanks to Jonathan Woithe.
l/glibc-2.24-x86_64-2.txz: Rebuilt.
       If is a linker script, don't clobber it with a symlink.
       Thanks to guanx.
l/glibc-i18n-2.24-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.24-x86_64-2.txz: Rebuilt.
n/gnupg-1.4.21-x86_64-1.txz: Upgraded.
       Fix critical security bug in the RNG [CVE-2016-6313]. An attacker who
       obtains 580 bytes from the standard RNG can trivially predict the next
       20 bytes of output. (This is according to the NEWS file included in the
       source. According to the annoucement linked below, an attacker who obtains
       4640 bits from the RNG can trivially predict the next 160 bits of output.)
       Problem detected by Felix Doerre and Vladimir Klebanov, KIT.
       For more information, see:
       (* Security fix *)
n/libgcrypt-1.7.3-x86_64-1.txz: Upgraded.
       Fix critical security bug in the RNG [CVE-2016-6313]. An attacker who
       obtains 580 bytes from the standard RNG can trivially predict the next
       20 bytes of output. (This is according to the NEWS file included in the
       source. According to the annoucement linked below, an attacker who obtains
       4640 bits from the RNG can trivially predict the next 160 bits of output.)
       Problem detected by Felix Doerre and Vladimir Klebanov, KIT.
       For more information, see:
       (* Security fix *)
n/network-scripts-14.2-noarch-3.txz: Rebuilt.
       In rc.inet1, skip interfaces that are not configured in rc.inet1.conf
       to speed up the boot time slightly.
       Thanks to Amritpal Bath.
n/stunnel-5.35-x86_64-2.txz: Rebuilt.
       Fixed incorrect config file name in
       Thanks to Ebben Aries.
xap/mozilla-firefox-48.0.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Thu Aug 11 18:24:29 UTC 2016
a/glibc-solibs-2.24-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2016f-noarch-1.txz: Upgraded.
a/kernel-generic-4.4.17-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.17-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.17-x86_64-1.txz: Upgraded.
ap/diffutils-3.4-x86_64-1.txz: Upgraded.
ap/vim-7.4.2196-x86_64-1.txz: Upgraded.
d/binutils-2.27-x86_64-1.txz: Upgraded.
d/gcc-5.4.0-x86_64-1.txz: Upgraded.
d/gcc-g++-5.4.0-x86_64-1.txz: Upgraded.
d/gcc-gfortran-5.4.0-x86_64-1.txz: Upgraded.
d/gcc-gnat-5.4.0-x86_64-1.txz: Upgraded.
d/gcc-go-5.4.0-x86_64-1.txz: Upgraded.
d/gcc-java-5.4.0-x86_64-1.txz: Upgraded.
d/gcc-objc-5.4.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.17-x86-1.txz: Upgraded.
d/llvm-3.8.1-x86_64-1.txz: Upgraded.
d/oprofile-1.1.0-x86_64-2.txz: Rebuilt.
k/kernel-source-4.4.17-noarch-1.txz: Upgraded.
l/glibc-2.24-x86_64-1.txz: Upgraded.
l/glibc-i18n-2.24-x86_64-1.txz: Upgraded.
l/glibc-profile-2.24-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-48.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
xap/vim-gvim-7.4.2196-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Sat Aug 6 19:29:16 UTC 2016
n/curl-7.50.1-x86_64-1.txz: Upgraded.
       This release fixes security issues:
       TLS: switch off SSL session id when client cert is used
       TLS: only reuse connections with the same client cert
       curl_multi_cleanup: clear connection pointer for easy handles
       For more information, see:
       (* Security fix *)
n/mutt-1.6.2-x86_64-1.txz: Upgraded.
n/openssh-7.3p1-x86_64-1.txz: Upgraded.
       This is primarily a bugfix release, and also addresses security issues.
       sshd(8): Mitigate a potential denial-of-service attack against the system's
       crypt(3) function via sshd(8).
       sshd(8): Mitigate timing differences in password authentication that could
       be used to discern valid from invalid account names when long passwords were
       sent and particular password hashing algorithms are in use on the server.
       ssh(1), sshd(8): Fix observable timing weakness in the CBC padding oracle
       ssh(1), sshd(8): Improve operation ordering of MAC verification for
       Encrypt-then-MAC (EtM) mode transport MAC algorithms to verify the MAC
       before decrypting any ciphertext.
       sshd(8): (portable only) Ignore PAM environment vars when UseLogin=yes.
       For more information, see:
       (* Security fix *)
n/stunnel-5.35-x86_64-1.txz: Upgraded.
       Fixes security issues:
       Fixed malfunctioning "verify = 4".
       Fixed incorrectly enforced client certificate requests.
       (* Security fix *)
Thu Jul 28 19:44:25 UTC 2016
a/kernel-generic-4.4.16-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.16-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.16-x86_64-1.txz: Upgraded.
d/kernel-headers-4.4.16-x86-1.txz: Upgraded.
k/kernel-source-4.4.16-noarch-1.txz: Upgraded.
l/libidn-1.33-x86_64-1.txz: Upgraded.
       Fixed out-of-bounds read bugs. Fixed crashes on invalid UTF-8.
       Thanks to Hanno Böck.
       For more information, see:
       (* Security fix *)
l/libtasn1-4.9-x86_64-1.txz: Upgraded.
n/bluez-5.41-x86_64-1.txz: Upgraded.
extra/tigervnc/tigervnc-1.6.0-x86_64-4.txz: Rebuilt.
       Recompiled for xorg-server-1.18.4.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Mon Jul 25 19:59:06 UTC 2016
a/pkgtools-14.2-noarch-11.txz: Rebuilt.
       Changes to pkgtool:
       Remove option to install from floppy disks.
       Don't use the --file option, which appears to be broken in the latest version
       of dialog. The only reason --file was ever used in the first place was to
       work around the Linux ARG_MAX limit of 131072 bytes, and since Linux 2.6.23 a
       much larger limit is in place making it unlikely to become an issue again.
       So we'll go back to passing the package list on the command line.
       Thanks to David Miller for the bug report.
Fri Jul 22 20:51:23 UTC 2016
a/dialog-1.3_20160424-x86_64-1.txz: Upgraded.
a/kmod-23-x86_64-1.txz: Upgraded.
a/lvm2-2.02.161-x86_64-1.txz: Upgraded.
d/git-2.9.2-x86_64-1.txz: Upgraded.
l/desktop-file-utils-0.23-x86_64-1.txz: Upgraded.
l/freetype-2.6.5-x86_64-1.txz: Upgraded.
l/harfbuzz-1.3.0-x86_64-1.txz: Upgraded.
n/bind-9.10.4_P2-x86_64-1.txz: Upgraded.
       Fixed a security issue:
       getrrsetbyname with a non absolute name could trigger an infinite
       recursion bug in lwresd and named with lwres configured if when
       combined with a search list entry the resulting name is too long.
       (CVE-2016-2775) [RT #42694]
       For more information, see:
       (* Security fix *)
n/httpd-2.4.23-x86_64-1.txz: Upgraded.
n/lftp-4.7.3-x86_64-1.txz: Upgraded.
n/links-2.13-x86_64-1.txz: Upgraded.
x/xf86-video-openchrome-0.5.0-x86_64-1.txz: Upgraded.
x/xkeyboard-config-2.18-noarch-1.txz: Upgraded.
x/xorg-server-1.18.4-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.18.4-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.18.4-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.18.4-x86_64-1.txz: Upgraded.
Thu Jul 21 23:25:54 UTC 2016
ap/tmux-2.2-x86_64-2.txz: Upgraded.
       Moved from /testing.
d/guile-2.0.12-x86_64-1.txz: Upgraded.
l/freetype-2.6.4-x86_64-1.txz: Upgraded.
n/libgcrypt-1.7.2-x86_64-1.txz: Upgraded.
n/network-scripts-14.2-noarch-2.txz: Rebuilt.
       In, use -L option to dhcpcd to disable Zeroconf. This is
       (almost) never going to be wanted, and ends up used accidentally on slower
       systems (such as some ARM platforms), preventing a proper DHCP lease.
       Thanks to Stuart Winter.
n/php-5.6.24-x86_64-1.txz: Upgraded.
       This release fixes bugs and security issues.
       For more information, see:
       (* Security fix *)
xap/gimp-2.8.18-x86_64-1.txz: Upgraded.
       This release fixes a security issue:
       Use-after-free vulnerability in the xcf_load_image function in
       app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of
       service (program crash) or possibly execute arbitrary code via a crafted
       XCF file.
       For more information, see:
       (* Security fix *)
Tue Jul 12 03:48:34 UTC 2016
a/etc-14.2-x86_64-8.txz: Rebuilt.
       In /etc/profile.d/lang.{csh,sh}.new, make en_US.UTF-8 the default locale.
a/kernel-generic-4.4.15-x86_64-1.txz: Upgraded.
a/kernel-huge-4.4.15-x86_64-1.txz: Upgraded.
a/kernel-modules-4.4.15-x86_64-1.txz: Upgraded.
a/lilo-24.2-x86_64-3.txz: Rebuilt.
       In liloconfig: Skip the menu asking if the user wants a UTF-8 virtual
       console, and use the kernel default (currently this is UTF-8 active).
d/kernel-headers-4.4.15-x86-1.txz: Upgraded.
k/kernel-source-4.4.15-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Sat Jul 9 18:35:56 UTC 2016
x/mesa-12.0.1-x86_64-1.txz: Upgraded.
Fri Jul 8 23:17:22 UTC 2016
x/mesa-12.0.0-x86_64-1.txz: Upgraded.
Thu Jul 7 19:52:36 UTC 2016
n/samba-4.4.5-x86_64-1.txz: Upgraded.
       This release fixes a security issue:
       Client side SMB2/3 required signing can be downgraded.
       It's possible for an attacker to downgrade the required signing for an
       SMB2/3 client connection, by injecting the SMB2_SESSION_FLAG_IS_GUEST or
       SMB2_SESSION_FLAG_IS_NULL flags. This means that the attacker can
       impersonate a server being connected to by Samba, and return malicious
       For more information, see:
       (* Security fix *)
Tue Jul 5 04:52:45 UTC 2016
xap/mozilla-thunderbird-45.2.0-x86_64-1.txz: Upgraded.
       This release contains security fixes and improvements.
       For more information, see:
       (* Security fix *)
Sun Jul 3 19:29:33 UTC 2016
a/file-5.28-x86_64-1.txz: Upgraded.
a/util-linux-2.28-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-47.0.1-x86_64-1.txz: Upgraded.
Thu Jun 30 20:26:57 UTC 2016
Slackware 14.2 x86_64 stable is released!

The long development cycle (the Linux community has lately been living in
"interesting times", as they say) is finally behind us, and we're proud to
announce the release of Slackware 14.2. The new release brings many updates
and modern tools, has switched from udev to eudev (no systemd), and adds
well over a hundred new packages to the system. Thanks to the team, the
upstream developers, the dedicated Slackware community, and everyone else
who pitched in to help make this release a reality.

The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from We're taking
pre-orders now, and offer a discount if you sign up for a subscription.

Have fun! :-)
Slackware® is a registered trademark of Slackware Linux, Inc. All logos and graphics are copyrighted.