blender-3.0.1-x86_64-1_ap.txz: Upgraded.
ap/sox-14.7.0.9-x86_64-1.txz: Upgraded.
l/python-pybind11-3.0.2-x86_64-1.txz: Upgraded.
l/zlib-1.3.2-x86_64-1.txz: Upgraded.
Address findings of the 7ASecurity audit of zlib:
* Check for negative lengths in crc32_combine functions.
* Copy only the initialized window contents in inflateCopy.
* Prevent the use of insecure functions without an explicit request.
* Add compressBound_z and deflateBound_z functions for large values.
* Use atomics to build inflate fixed tables once.
* Add --undefined option to ./configure for UBSan checker.
* Copy only the initialized deflate state in deflateCopy.
* Zero inflate state on allocation.
* Add compress_z and uncompress_z functions.
(* Security fix *)
n/stunnel-5.77-x86_64-1.txz: Upgraded.
x/xterm-407-x86_64-1.txz: Upgraded.
extra/brltty/brltty-6.9-x86_64-1.txz: Upgraded.
a/kernel-firmware-20260214_3a0e2a5-noarch-1.txz: Upgraded.
a/kernel-generic-6.12.73-x86_64-1.txz: Upgraded.
a/lrzip-0.660-x86_64-1.txz: Upgraded.
Address multiple potential security issues with crafted or corrupt archives.
(* Security fix *)
d/kernel-headers-6.12.73-x86-1.txz: Upgraded.
k/kernel-source-6.12.73-noarch-1.txz: Upgraded.
FTRACE_SYSCALLS n -> y
Thanks to isaackwy.
l/libssh-0.12.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
SCP Protocol Path Traversal in ssh_scp_pull_request().
Possible Denial of Service when parsing unexpected configuration files.
Buffer underflow in ssh_get_hexa() on invalid input.
Specially crafted patterns could cause DoS.
OOB Read in sftp_parse_longname().
Read buffer overrun when handling SFTP extensions.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-0964
https://www.cve.org/CVERecord?id=CVE-2026-0965
https://www.cve.org/CVERecord?id=CVE-2026-0966
https://www.cve.org/CVERecord?id=CVE-2026-0967
https://www.cve.org/CVERecord?id=CVE-2026-0968
https://www.cve.org/CVERecord?id=CVE-2025-14821
(* Security fix *)
l/mozilla-nss-3.120.1-x86_64-1.txz: Upgraded.
l/mozjs140-140.7.1esr-x86_64-1.txz: Upgraded.
n/cyrus-sasl-2.1.28-x86_64-5.txz: Rebuilt.
Recompiled with some experimental options that are commonly expected:
--enable-auth-sasldb, --enable-ntlm, --enable-httpform, --enable-alwaystrue.
Thanks to BigDumbDinosaur.
n/ethtool-6.19-x86_64-1.txz: Upgraded.
n/whois-5.6.6-x86_64-1.txz: Upgraded.
Added the .mc TLD server.
Updated the .ps TLD server.
Removed the .info, .mobi, .travel and .ÙÙسطÙÙ (.xn--ygbi2ammx,
Palestinian Territory) TLD servers.
Removed 3 new gTLDs which are no longer active.
mkpasswd: added support the Chinese SM3-based hashing algorithms.
x/ibus-m17n-1.4.38-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-140.7.1esr-x86_64-1.txz: Upgraded.
This update contains a security fix:
Heap buffer overflow in libvpx.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.7.1/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2026-10/
https://www.cve.org/CVERecord?id=CVE-2026-2447
(* Security fix *)
xap/mozilla-thunderbird-140.7.2esr-x86_64-1.txz: Upgraded.
This update contains a security fix:
Heap buffer overflow in libvpx.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.7.2esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2026-11/
https://www.cve.org/CVERecord?id=CVE-2026-2447
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-6.18.x/kernel-generic-6.18.12-x86_64-1.txz: Upgraded.
testing/packages/linux-6.18.x/kernel-headers-6.18.12-x86-1.txz: Upgraded.
testing/packages/linux-6.18.x/kernel-source-6.18.12-noarch-1.txz: Upgraded.
FTRACE_SYSCALLS n -> y
Thanks to isaackwy.
usb-and-pxe-installers/usbboot.img: Rebuilt.
l/libmtp-1.1.23-x86_64-1.txz: Upgraded.
l/librsvg-2.61.4-x86_64-1.txz: Upgraded.
l/libsoup3-3.6.6-x86_64-1.txz: Upgraded.
x/mesa-26.0.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20260214_3a0e2a5-noarch-1.txz: Upgraded.
a/kernel_armv8-6.18.12-aarch64-1.txz: Upgraded.
/boot/initrd/[load_kernel_modules.scr/platform/aarch64/pine64_sbc]: Added
This is a Kernel module loader script for the PINE64 single-board-computers.
Thanks to William Burlamachi.
Kernel configuration changes:
CONFIG_DW_AXI_DMAC=m
ZRAM_TRACK_ENTRY_ACTIME=y
ZRAM_MEMORY_TRACKING=y
ZRAM_MULTI_COMP=y
BLK_DEV_DRBD=m
BLK_DEV_RAM=m
BLK_DEV_RBD=m
LRU_CACHE=m
Thanks to Brent Earl.
INPUT_AXP20X_PEK=m
PINCTRL_SUN4I_A10=y
Thanks to William Burlamachi.
FTRACE_SYSCALLS=y
Thanks to isaackwy.
a/lrzip-0.660-aarch64-1.txz: Upgraded.
Address multiple potential security issues with crafted or corrupt archives.
(* Security fix *)
d/kernel-headers-6.18.12-aarch64-1.txz: Upgraded.
k/kernel-source-6.18.12-aarch64-1.txz: Upgraded.
l/libmtp-1.1.23-aarch64-1.txz: Upgraded.
l/librsvg-2.61.4-aarch64-1.txz: Upgraded.
l/libsoup3-3.6.6-aarch64-1.txz: Upgraded.
l/libssh-0.12.0-aarch64-1.txz: Upgraded.
This update fixes security issues:
SCP Protocol Path Traversal in ssh_scp_pull_request().
Possible Denial of Service when parsing unexpected configuration files.
Buffer underflow in ssh_get_hexa() on invalid input.
Specially crafted patterns could cause DoS.
OOB Read in sftp_parse_longname().
Read buffer overrun when handling SFTP extensions.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-0964
https://www.cve.org/CVERecord?id=CVE-2026-0965
https://www.cve.org/CVERecord?id=CVE-2026-0966
https://www.cve.org/CVERecord?id=CVE-2026-0967
https://www.cve.org/CVERecord?id=CVE-2026-0968
https://www.cve.org/CVERecord?id=CVE-2025-14821
(* Security fix *)
l/mozilla-nss-3.120.1-aarch64-1.txz: Upgraded.
l/mozjs140-140.7.1esr-aarch64-1.txz: Upgraded.
n/cyrus-sasl-2.1.28-aarch64-5.txz: Rebuilt.
Recompiled with some experimental options that are commonly expected:
--enable-auth-sasldb, --enable-ntlm, --enable-httpform, --enable-alwaystrue.
Thanks to BigDumbDinosaur.
n/ethtool-6.19-aarch64-1.txz: Upgraded.
n/whois-5.6.6-aarch64-1.txz: Upgraded.
Added the .mc TLD server.
Updated the .ps TLD server.
Removed the .info, .mobi, .travel and .ÙÙسطÙÙ (.xn--ygbi2ammx,
Palestinian Territory) TLD servers.
Removed 3 new gTLDs which are no longer active.
mkpasswd: added support the Chinese SM3-based hashing algorithms.
x/ibus-m17n-1.4.38-aarch64-1.txz: Upgraded.
x/mesa-26.0.0-aarch64-1.txz: Upgraded.
xap/mozilla-firefox-140.7.1esr-aarch64-1.txz: Upgraded.
This update contains a security fix:
Heap buffer overflow in libvpx.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.7.1/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2026-10/
https://www.cve.org/CVERecord?id=CVE-2026-2447
(* Security fix *)
xap/mozilla-thunderbird-140.7.2esr-aarch64-1.txz: Upgraded.
This update contains a security fix:
Heap buffer overflow in libvpx.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.7.2esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2026-11/
https://www.cve.org/CVERecord?id=CVE-2026-2447
(* Security fix *)
installer/*: Rebuilt.
/usr/share/hwm-configure/platform/aarch64/installer/helper.scr/999-rpi-vendor-kernel-transition
Added post-installation transition script for Raspberry Pi systems. Offers an
optional switch from the upstream mainline Linux kernel to the Raspberry Pi
vendor kernel fork.
kernels/*: Upgraded.
a/btrfs-progs-6.19-aarch64-1.txz: Upgraded.
a/floppy-5.6-aarch64-3.txz: Rebuilt.
Install mtools' config as etc/mtools.conf.new
a/kernel-firmware-20260212_d10429d-noarch-1.txz: Upgraded.
a/less-692-aarch64-1.txz: Upgraded.
d/strace-6.19-aarch64-1.txz: Upgraded.
kde/libindi-2.1.9-aarch64-1.txz: Upgraded.
kde/qcoro-0.13.0-aarch64-1.txz: Upgraded.
l/abseil-cpp-20260107.1-aarch64-1.txz: Upgraded.
l/cmark-0.31.2-aarch64-1.txz: Upgraded.
l/enchant-2.8.15-aarch64-1.txz: Upgraded.
l/glib2-2.86.4-aarch64-1.txz: Upgraded.
l/lame-3.100-aarch64-7.txz: Rebuilt.
CBR: High quality settings (e.g, -q 0) degrade quality over -q 4.
Add missing symbol(s) to library symbol file.
l/libuv-1.51.0-aarch64-1.txz: Upgraded.
Reverted due to regressions. We'll look at 1.52.1 when it releases,
Thanks to 1st.monkey.
l/netpbm-11.13.03-aarch64-1.txz: Upgraded.
l/orc-0.4.42-aarch64-1.txz: Upgraded.
l/python-pyproject_metadata-0.11.0-aarch64-1.txz: Upgraded.
n/NetworkManager-1.56.0-aarch64-1.txz: Upgraded.
n/ca-certificates-20260212-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/gpa-0.11.1-aarch64-1.txz: Upgraded.
n/socat-1.8.1.1-aarch64-1.txz: Upgraded.
n/wireless-regdb-2026.02.04-aarch64-1.txz: Upgraded.
x/anthy-unicode-1.0.0.20260213-aarch64-1.txz: Upgraded.
x/libinput-1.31.0-aarch64-1.txz: Upgraded.
a/dracut-110-aarch64-1.txz: Upgraded.
a/ed-1.22.5-aarch64-1.txz: Upgraded.
a/kernel-firmware-20260211_e72747d-noarch-1.txz: Upgraded.
a/upower-1.91.1-aarch64-1.txz: Upgraded.
ap/man-pages-6.17-noarch-1.txz: Upgraded.
ap/sox-14.7.0.7-aarch64-1.txz: Upgraded.
d/python-setuptools-82.0.0-aarch64-1.txz: Upgraded.
l/libpng-1.6.55-aarch64-1.txz: Upgraded.
Fixed a high severity security issue:
Heap buffer overflow in `png_set_quantize`.
Reported and fixed by Joshua Inscoe.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-25646
(* Security fix *)
l/libuv-1.52.0-aarch64-1.txz: Upgraded.
l/python-markdown-3.10.2-aarch64-1.txz: Upgraded.
l/python-pillow-12.1.1-aarch64-1.txz: Upgraded.
l/sbc-2.2-aarch64-1.txz: Upgraded.
l/suitesparse-7.12.2-aarch64-1.txz: Upgraded.
n/bluez-5.86-aarch64-1.txz: Upgraded.
n/gnutls-3.8.12-aarch64-1.txz: Upgraded.
This update fixes security issues:
libgnutls: Fix NULL pointer dereference in PSK binder verification.
libgnutls: Fix name constraint processing performance issue.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-1584
https://www.cve.org/CVERecord?id=CVE-2025-14831
(* Security fix *)
n/openvpn-2.7.0-aarch64-1.txz: Upgraded.
n/php-8.4.18-aarch64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.4.18
xap/xlockmore-5.88-aarch64-1.txz: Upgraded.
patches/packages/libssh-0.11.4-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
SCP Protocol Path Traversal in ssh_scp_pull_request().
Possible Denial of Service when parsing unexpected configuration files.
Buffer underflow in ssh_get_hexa() on invalid input.
Specially crafted patterns could cause DoS.
OOB Read in sftp_parse_longname().
Read buffer overrun when handling SFTP extensions.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-0964
https://www.cve.org/CVERecord?id=CVE-2026-0965
https://www.cve.org/CVERecord?id=CVE-2026-0966
https://www.cve.org/CVERecord?id=CVE-2026-0967
https://www.cve.org/CVERecord?id=CVE-2026-0968
https://www.cve.org/CVERecord?id=CVE-2025-14821
(* Security fix *)
patches/packages/lrzip-0.660-x86_64-1_slack15.0.txz: Upgraded.
Address multiple potential security issues with crafted or corrupt archives.
(* Security fix *)
patches/packages/mozilla-firefox-140.7.1esr-x86_64-1_slack15.0.txz: Upgraded.
This update contains a security fix:
Heap buffer overflow in libvpx.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.7.1/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2026-10/
https://www.cve.org/CVERecord?id=CVE-2026-2447
(* Security fix *)
patches/packages/mozilla-thunderbird-140.7.2esr-x86_64-1_slack15.0.txz: Upgraded.
This update contains a security fix:
Heap buffer overflow in libvpx.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.7.2esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2026-11/
https://www.cve.org/CVERecord?id=CVE-2026-2447
(* Security fix *)
patches/packages/whois-5.6.6-x86_64-1_slack15.0.txz: Upgraded.
Added the .mc TLD server.
Updated the .ps TLD server.
Removed the .info, .mobi, .travel and .ᅵ.ᅵ.سطᅵ.ᅵ. (.xn--ygbi2ammx,
Palestinian Territory) TLD servers.
Removed 3 new gTLDs which are no longer active.
mkpasswd: added support the Chinese SM3-based hashing algorithms.
patches/packages/aaa_glibc-solibs-2.33-x86_64-9_slack15.0.txz: Rebuilt.
This (optional) update changes the install script to allow a clean downgrade
from the glibc packages in /testing/packages/binutils-gcc-glibc/.
Thanks to bitfuzzy for the bug report.
patches/packages/glibc-2.33-x86_64-9_slack15.0.txz: Rebuilt.
patches/packages/glibc-i18n-2.33-x86_64-9_slack15.0.txz: Rebuilt.
patches/packages/glibc-profile-2.33-x86_64-9_slack15.0.txz: Rebuilt.
testing/packages/rust-1.93.1-x86_64-1_slack15.0.txz: Upgraded.
patches/packages/libssh-0.11.4-arm-1_slack15.0.txz: Upgraded.
This update fixes security issues:
SCP Protocol Path Traversal in ssh_scp_pull_request().
Possible Denial of Service when parsing unexpected configuration files.
Buffer underflow in ssh_get_hexa() on invalid input.
Specially crafted patterns could cause DoS.
OOB Read in sftp_parse_longname().
Read buffer overrun when handling SFTP extensions.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-0964
https://www.cve.org/CVERecord?id=CVE-2026-0965
https://www.cve.org/CVERecord?id=CVE-2026-0966
https://www.cve.org/CVERecord?id=CVE-2026-0967
https://www.cve.org/CVERecord?id=CVE-2026-0968
https://www.cve.org/CVERecord?id=CVE-2025-14821
(* Security fix *)
patches/packages/lrzip-0.660-arm-1_slack15.0.txz: Upgraded.
Address multiple potential security issues with crafted or corrupt archives.
(* Security fix *)
patches/packages/whois-5.6.6-arm-1_slack15.0.txz: Upgraded.
Added the .mc TLD server.
Updated the .ps TLD server.
Removed the .info, .mobi, .travel and .ᅵ.ᅵ.سطᅵ.ᅵ. (.xn--ygbi2ammx,
Palestinian Territory) TLD servers.
Removed 3 new gTLDs which are no longer active.
mkpasswd: added support the Chinese SM3-based hashing algorithms.
patches/packages/ca-certificates-20260212-noarch-1_slack15.0.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
patches/packages/gnutls-3.8.12-arm-1_slack15.0.txz: Upgraded.
This update fixes security issues:
libgnutls: Fix NULL pointer dereference in PSK binder verification.
libgnutls: Fix name constraint processing performance issue.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-1584
https://www.cve.org/CVERecord?id=CVE-2025-14831
(* Security fix *)
patches/packages/libpng-1.6.55-arm-1_slack15.0.txz: Upgraded.
Fixed a high severity security issue:
Heap buffer overflow in `png_set_quantize`.
Reported and fixed by Joshua Inscoe.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-25646
(* Security fix *)
24/02/2022: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware
15/12/2015: Aggiornato HowTo automatizzare la compilazione del kernel
15/12/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
24/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
22/11/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
07/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
05/11/2015: Nuovo HowTo Automatizzare l'aggiornamento di Slackware current
30/10/2015: Aggiornato HowTo Automatizzare la prima configurazione di Slackware
26/05/2015: Aggiornato HowTo mini Slackware su pendrive
07/05/2015: Aggiornato HowTo automatizzare la compilazione del kernel
13/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
02/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
Questo script provvede ad aggiornare Slackware o Slackware64 all'ultima current in maniera del tutto autonoma, dalla ricerca di aggiornamenti all'aggiornamento del bootloader.
Scarica la lista dei pacchetti e la confronta con quelli installati, dopodiché controlla se i nuovi pacchetti sono presenti in un eventuale DVD già montato altrimenti li scarica da internet.
Lo script può gestire anche un sistema multilib, infatti se...
Uno script da eseguire al primo avvio di Slackware.
Mi capita spesso di fare nuove installazioni di Slackware e di ripetere sempre le stesse operazioni atte ad una prima configurazione di base, come ad esempio l'italianizzazione o l'impostazione della corretta risoluzione framebuffer.
Per cui ho deciso di raggruppare tutte queste operazioni di base, che possono...
Ecco che la bash ci viene in aiuto anche per realizzare un semplice sistema di video sorveglianza molto economico.
Questo script scatta una foto dalla webcam impostata nella variabile DEV con mplayer, ne fa una copia con la data corrente come nome del file per conservare una copia di tutte le foto scattate e per sapere a prima vista a quando risalgono. Dopodiché carica entrambe le copie della foto sul server ftp...
Spesso i produttori di hardware ottengono costi di produzione più bassi utilizzando componenti con capacità superiori in dispositivi non progettati per sfruttarle piuttosto che utilizzando componenti su misura, questo è anche il caso del mio mouse Logitech RX1000.
Aprendo il mouse e guardando le piste stampate sul retro della scheda si nota che il controller ha un pin inutilizzato, quindi leggendo il codice (CY7C63813) sul chip e trovandone il...
Compilare il kernel Linux non è certamente cosa difficile, ma chi è alle prime armi spesso è spaventato da questa procedura e anche per chi è pratico a volte diventa scocciante aggiornare ad ogni release.
Dunque ho scritto questo script bash che automatizza la procedura: rileva quanti core ha il proprio processore per decidere in quanti processi paralleli eseguire la compilazione in modo da ottimizzarne i tempi, poi controlla se la versione scelta...
Condividi sui tuoi social preferiti!
Telegram Facebook Linkedin Twitter Pinterest