Aggancia questa barra allo schermo |  Disattiva gli effetti grafici

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Slackware Linux e risoluzione di problemi, di Andrea Peluso


ChangeLog repository

Repository Rss

blender-3.0.1-x86_64-1_ap.txz:  Upgraded.

ChangeLog Slackware current

ChangeLog x86 Rss - ChangeLog x86_64 Rss

l/libdiscid-0.7.0-x86_64-1.txz:  Upgraded.
l/libffi-3.7.0-x86_64-1.txz:  Upgraded.
l/netpbm-11.15.02-x86_64-1.txz:  Upgraded.
l/pipewire-1.6.7-x86_64-7.txz:  Rebuilt.
  pipewire.sh: make the script a lot more robust, starting only if needed,
  and waiting for the pipewire socket to be available before starting the
  other daemons.
  pipewire.csh: start pipewire.sh through bash, which seems like cheating
  but hey, it works.
  Thanks to Petri Kaukasoina.
  pipewire-disable.sh: disable the pipewire profile.d scripts.
  pipewire-enable.sh: enable the pipewire profile.d scripts.
l/python-hatchling-1.31.0-x86_64-1.txz:  Upgraded.
n/c-ares-1.34.8-x86_64-1.txz:  Upgraded.
n/ethtool-7.1-x86_64-1.txz:  Upgraded.
n/proftpd-1.3.9c-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  ExecEnviron values not passed due to regression since 1.3.8.d.
  Stack buffer overflow in MLSD/MLST handling for long path names.
  MaxTransfersPerUser no longer enforces configured limits.
  AdminControlsACLs for config, get actions not honored as they should be.
  Memcached/Redis-cached JSON TLS session/OCSP entries decoded into fixed
  buffers without bounds checking.
  RewriteMap unescape builtin use causes one-byte out-of-bounds write,
  fails to reject illegal characters.
  SQL group name lookup concatenates client-provided group names without
  escaping.
  Authenticated SFTP sessions can overflow the SFTP packet buffer.
  Default Controls socket ACLs unintentionally allow all users access for
  sending Controls requests.
  (* Security fix *)
x/libXfont2-2.0.8-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  BitmapScaleBitmaps Integer Overflow Heap Buffer Overflow.
  PCF Font Parsing Heap Buffer Overflow.
  computeProps Property Buffer Heap Buffer Overflow.
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062253.html
    https://www.cve.org/CVERecord?id=CVE-2026-56001
    https://www.cve.org/CVERecord?id=CVE-2026-56002
    https://www.cve.org/CVERecord?id=CVE-2026-56003
  (* Security fix *)
x/libva-2.24.1-x86_64-1.txz:  Upgraded.
x/wlroots-0.20.2-x86_64-1.txz:  Upgraded.
x/xkbutils-1.0.7-x86_64-1.txz:  Upgraded.
x/xlsatoms-1.1.5-x86_64-1.txz:  Upgraded.
x/xlsfonts-1.0.9-x86_64-1.txz:  Upgraded.
x/xorg-server-21.1.24-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)
x/xorg-server-xephyr-21.1.24-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-21.1.24-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-21.1.24-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-24.1.13-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)

a/mcelog-211-x86_64-1.txz:  Upgraded.
ap/scdoc-1.11.5-x86_64-1.txz:  Upgraded.
ap/vim-9.2.0782-x86_64-1.txz:  Upgraded.
d/patchelf-0.19.1-x86_64-1.txz:  Upgraded.
l/enchant-2.8.19-x86_64-1.txz:  Upgraded.
l/mlt-7.40.0-x86_64-1.txz:  Upgraded.
l/python-cffi-2.1.0-x86_64-1.txz:  Upgraded.
l/python-scikit-build-core-1.0.1-x86_64-1.txz:  Upgraded.
l/rnnoise-0.2-x86_64-1.txz:  Added.
  Needed by mlt-7.40.0.
l/zxing-cpp-3.1.0-x86_64-1.txz:  Upgraded.
n/postfix-3.11.5-x86_64-1.txz:  Upgraded.
n/tftp-hpa-5.4-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  Fix several security-relevant bugs in path validation
  (tftpd/path.c): an uninitialized buffer read and a broken
  path tokenizer could let a crafted or unlucky request bypass
  path restrictions or crash the daemon.
  Fix buffer overflows in the tftp client: an unbounded strcpy()
  when building requests, an out-of-bounds write when putting
  multiple files to a remote directory, and an unbounded write
  into the interactive command-line argument array.
  Fix an out-of-bounds read while scanning request fields in
  tftpd, and an incorrect address family used when creating the
  per-transfer socket on platforms without recvmsg().
  (* Security fix *)
xap/vim-gvim-9.2.0782-x86_64-1.txz:  Upgraded.

a/sysvinit-scripts-15.1-noarch-39.txz:  Rebuilt.
  rc.M: don't use a relative path when looking in /var/lib/dkms/.
  Thanks to jayjwa.
l/libfyaml-0.9.6-x86_64-1.txz:  Upgraded.
l/librevenge-0.0.6-x86_64-1.txz:  Upgraded.
l/python-pyproject_metadata-0.12.1-x86_64-1.txz:  Upgraded.
l/qtkeychain-0.17.0-x86_64-1.txz:  Upgraded.
n/c-ares-1.34.7-x86_64-1.txz:  Upgraded.
  This release fixes the following security issues:
  Use-after-free / double-free in c-ares' query-completion handling, remotely
  triggerable via ares_getaddrinfo() over TCP.
  CPU-exhaustion denial of service via unbounded DNS name compression pointer
  chains.
  Memory-amplification denial of service via unvalidated DNS header record
  counts.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2026-33630
    https://github.com/c-ares/c-ares/security/advisories/GHSA-6wfj-rwm7-3542
    https://github.com/c-ares/c-ares/security/advisories/GHSA-pjmc-gx33-gc76
    https://github.com/c-ares/c-ares/security/advisories/GHSA-jv8r-gqr9-68wj
  (* Security fix *)
n/openssh-10.4p1-x86_64-1.txz:  Upgraded.
  This release contains a number of security fixes:
  sftp(1): when downloading files on the command-line using
  "sftp host:/path .", a malicious server could cause the file to
  be downloaded to an unexpected location. This issue was identified
  by the Swival Security Scanner.
  scp(1): when copying files between two remote destinations, do
  not allow a malicious server to write files to the parent
  directory of the intended target directory.  This issue was
  identified by the Swival Security Scanner.
  sshd(8): when using the "internal-sftp" SFTP server implementation
  (this is not the default), long command lines were previously
  truncated silently after the 9th argument. If a security-relevant
  option was in the 10th or later position, it would be discarded.
  Reported by Steve Caffrey.
  sshd(8): add a documentation note to mention that the
  GSSAPIStrictAcceptorCheck option is ineffective when the server
  is joined to a Windows Active Directory. Reported by Yarin Aharoni
  of Safebreach.
  sshd(8): DisableForwarding=yes didn't override PermitTunnel=yes
  as it was documented to do. Note that PermitTunnel is not enabled
  by default. Reported independently by Huzaifa Sidhpurwala of
  Redhat and Marko Jevtic.
  sshd(8): avoid a potential pre-authentication denial of service
  when GSSAPIAuthentication was enabled (this feature is off by
  default). This was not mitigated by MaxAuthTries, but would be
  penalised by PerSourcePenalties. This was reported by Manfred
  Kaiser of the milCERT AT (Austrian Ministry of Defence).
  sshd(8): fix a number of cases where the minimum authentication
  delay was not being enforced. Reported by the Orange Cyberdefense
  Vulnerability Team.
  ssh(1): fix a possible client-side use-after-free if the server
  changes its host key during a key reexchange. This was reported by
  Zhenpeng (Leo) Lin of Depthfirst.
  For more information, see:
    https://www.openssh.org/releasenotes.html#10.4
  (* Security fix *)
xap/freerdp-3.28.0-x86_64-1.txz:  Upgraded.
  This update fixes security issues.
  For more information, see:
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-pjqx-v446-x7fc
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-9g22-w2gr-vcmp
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-f27x-frr8-j9hc
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-72j9-356v-88xq
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-v64m-xxfw-hrv6
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mp3f-59pg-c5pp
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47fr-jw86-c3fj
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-v5wf-j8j4-77h7
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rq8f-9xjh-pr3m
  (* Security fix *)
extra/bash-completion/bash-completion-2.18.0-noarch-1.txz:  Upgraded.

ChangeLog Slackware arm 64 current

ChangeLog arm 64 Rss

ap/scdoc-1.11.5-aarch64-1.txz:  Upgraded.
ap/vim-9.2.0782-aarch64-1.txz:  Upgraded.
d/patchelf-0.19.1-aarch64-1.txz:  Upgraded.
l/enchant-2.8.19-aarch64-1.txz:  Upgraded.
l/libdiscid-0.7.0-aarch64-1.txz:  Upgraded.
l/libffi-3.7.0-aarch64-1.txz:  Upgraded.
l/mlt-7.40.0-aarch64-1.txz:  Upgraded.
l/netpbm-11.15.02-aarch64-1.txz:  Upgraded.
l/pipewire-1.6.7-aarch64-3.txz:  Rebuilt.
  pipewire.sh: make the script a lot more robust, starting only if needed,
  and waiting for the pipewire socket to be available before starting the
  other daemons.
  pipewire.csh: start pipewire.sh through bash, which seems like cheating
  but hey, it works.
  Thanks to Petri Kaukasoina.
  pipewire-disable.sh: disable the pipewire profile.d scripts.
  pipewire-enable.sh: enable the pipewire profile.d scripts.
l/python-cffi-2.1.0-aarch64-1.txz:  Upgraded.
l/python-hatchling-1.31.0-aarch64-1.txz:  Upgraded.
l/python-scikit-build-core-1.0.1-aarch64-1.txz:  Upgraded.
l/rnnoise-0.2-aarch64-1.txz:  Added.
  Needed by mlt-7.40.0.
l/zxing-cpp-3.1.0-aarch64-1.txz:  Upgraded.
n/c-ares-1.34.8-aarch64-1.txz:  Upgraded.
n/ethtool-7.1-aarch64-1.txz:  Upgraded.
n/postfix-3.11.5-aarch64-1.txz:  Upgraded.
n/proftpd-1.3.9c-aarch64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  ExecEnviron values not passed due to regression since 1.3.8.d.
  Stack buffer overflow in MLSD/MLST handling for long path names.
  MaxTransfersPerUser no longer enforces configured limits.
  AdminControlsACLs for config, get actions not honored as they should be.
  Memcached/Redis-cached JSON TLS session/OCSP entries decoded into fixed
  buffers without bounds checking.
  RewriteMap unescape builtin use causes one-byte out-of-bounds write,
  fails to reject illegal characters.
  SQL group name lookup concatenates client-provided group names without
  escaping.
  Authenticated SFTP sessions can overflow the SFTP packet buffer.
  Default Controls socket ACLs unintentionally allow all users access for
  sending Controls requests.
  (* Security fix *)
x/libXfont2-2.0.8-aarch64-1.txz:  Upgraded.
  This update fixes security issues:
  BitmapScaleBitmaps Integer Overflow Heap Buffer Overflow.
  PCF Font Parsing Heap Buffer Overflow.
  computeProps Property Buffer Heap Buffer Overflow.
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062253.html
    https://www.cve.org/CVERecord?id=CVE-2026-56001
    https://www.cve.org/CVERecord?id=CVE-2026-56002
    https://www.cve.org/CVERecord?id=CVE-2026-56003
  (* Security fix *)
x/libva-2.24.1-aarch64-1.txz:  Upgraded.
x/wlroots-0.20.2-aarch64-1.txz:  Upgraded.
x/xkbutils-1.0.7-aarch64-1.txz:  Upgraded.
x/xlsatoms-1.1.5-aarch64-1.txz:  Upgraded.
x/xlsfonts-1.0.9-aarch64-1.txz:  Upgraded.
x/xorg-server-21.1.24-aarch64-1.txz:  Upgraded.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)
x/xorg-server-xephyr-21.1.24-aarch64-1.txz:  Upgraded.
x/xorg-server-xnest-21.1.24-aarch64-1.txz:  Upgraded.
x/xorg-server-xvfb-21.1.24-aarch64-1.txz:  Upgraded.
x/xorg-server-xwayland-24.1.13-aarch64-1.txz:  Upgraded.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)
xap/vim-gvim-9.2.0782-aarch64-1.txz:  Upgraded.

a/acl-2.4.0-aarch64-1.txz:  Upgraded.
a/attr-2.6.0-aarch64-1.txz:  Upgraded.
a/bash-5.3.015-aarch64-2.txz:  Rebuilt.
  Add symlink for rbash.
  Thanks to Lockywolf.
a/bcachefs-tools-1.38.8-aarch64-1.txz:  Upgraded.
a/haveged-1.9.26-aarch64-1.txz:  Upgraded.
a/hwdata-0.409-aarch64-1.txz:  Upgraded.
a/kernel-firmware-20260703_c95059a-noarch-1.txz:  Upgraded.
a/kernel_armv8-6.18.38-aarch64-1.txz:  Upgraded.
  /boot/initrd-armv8/[load_kernel_modules.scr/platform/aarch64/baseline_chrome]: Added.
  Configures the core set of kernel modules required by all supported
  Google Chromebooks, regardless of the underlying Hardware Model or SoC.
  /boot/initrd-armv8/[load_kernel_modules.scr/platform/aarch64/mediatek]: Added.
  Adds support for Google Chromebooks based on MediaTek SoCs.
  Thanks to William Burlamachi.
a/mkinitrd-1.4.11-aarch64-39.txz:  Rebuilt.
a/ndctl-85-aarch64-1.txz:  Upgraded.
a/shadow-4.19.4-aarch64-4.txz:  Rebuilt.
  Fixed a bug that was clobbering /etc/login.defs.
  Thanks to Markus Wiesner.
  Fixed a bug that was clobbering /etc/login.defs.
  Add configure options: --with-bcrypt --with-yescrypt
  Thanks to Markus Wiesner.
a/sysvinit-scripts-15.1-noarch-48.txz:  Rebuilt.
  rc.M: don't use a relative path when looking in /var/lib/dkms/.
  Thanks to jayjwa.
a/thin-provisioning-tools-1.3.3-aarch64-1.txz:  Added.
  This is a suite of tools for manipulating the metadata of the dm-thin,
  dm-cache and dm-era device mapper targets.  Google Chromebook Hardware Models,
  which typically ship with thinly provisioned LVM volumes that may need to be
  resized or adjusted when installing Slackware alongside, or in place of,
  ChromeOS.
  Thanks to William Burlamachi.
  I'll look into whether LVM2 can be rebuilt with the thin-provisioning as internal
  tools, but for now we'll use this.
a/upower-1.91.3-aarch64-1.txz:  Upgraded.
ap/inxi-3.3.41_1-noarch-1.txz:  Upgraded.
ap/linuxdoc-tools-0.9.86-aarch64-2.txz:  Rebuilt.
  Upgraded to gtk-doc 1.36.1.
  Added DocBook XML DTD and Schemas 5.0 (docbook-xml-5.0).
  Added catalog rewrite entries for the xsl-ns/current URI variant
  (http://docbook.sourceforge.net/release/xsl-ns/current) in
  /etc/xml/catalog. The xsl-ns and nons stylesheets are identical
  in 1.79.x; this registers the missing URI alias required by
  modern build systems.
ap/nano-9.1-aarch64-1.txz:  Upgraded.
  Needed by plasma-bigscreen-6.7.1.
ap/qemu-11.0.2-aarch64-1.txz:  Upgraded.
ap/qemu-guest-agent-11.0.2-aarch64-1.txz:  Upgraded.
ap/sqlite-3.53.3-aarch64-1.txz:  Upgraded.
ap/tmux-3.7b-aarch64-1.txz:  Upgraded.
ap/vim-9.2.0758-aarch64-1.txz:  Upgraded.
d/Cython-3.2.8-aarch64-1.txz:  Upgraded.
d/git-2.55.0-aarch64-1.txz:  Upgraded.
d/kernel-headers-6.18.38-aarch64-1.txz:  Upgraded.
d/mercurial-7.2.3-aarch64-1.txz:  Upgraded.
d/nasm-3.02-aarch64-1.txz:  Upgraded.
d/parallel-20260622-noarch-1.txz:  Upgraded.
d/patchelf-0.19.0-aarch64-1.txz:  Upgraded.
d/phytool-2-aarch64-2.txz:  Added.
  Moved from series a -> d.
d/python-setuptools-83.0.0-aarch64-1.txz:  Upgraded.
d/rust-1.96.1-aarch64-1.txz:  Upgraded.
d/tree-sitter-0.26.10-aarch64-1.txz:  Upgraded.
k/kernel-source-6.18.38-aarch64-1.txz:  Upgraded.
kde/accessibility-inspector-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-calendar-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-calendar-tools-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-contacts-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-import-wizard-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-mime-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadi-search-26.04.3-aarch64-1.txz:  Upgraded.
kde/akonadiconsole-26.04.3-aarch64-1.txz:  Upgraded.
kde/akregator-26.04.3-aarch64-1.txz:  Upgraded.
kde/alligator-26.04.3-aarch64-1.txz:  Upgraded.
kde/analitza-26.04.3-aarch64-1.txz:  Upgraded.
kde/arianna-26.04.3-aarch64-1.txz:  Upgraded.
kde/ark-26.04.3-aarch64-1.txz:  Upgraded.
kde/artikulate-26.04.3-aarch64-1.txz:  Upgraded.
kde/audex-26.04.3-aarch64-1.txz:  Upgraded.
kde/audiocd-kio-26.04.3-aarch64-1.txz:  Upgraded.
kde/aurorae-6.7.2-aarch64-1.txz:  Upgraded.
kde/baloo-6.27.0-aarch64-2.txz:  Rebuilt.
  Recompiled against lmdb-1.0.0.
kde/baloo-widgets-26.04.3-aarch64-1.txz:  Upgraded.
kde/blinken-26.04.3-aarch64-1.txz:  Upgraded.
kde/bluedevil-6.7.2-aarch64-1.txz:  Upgraded.
kde/bomber-26.04.3-aarch64-1.txz:  Upgraded.
kde/bovo-26.04.3-aarch64-1.txz:  Upgraded.
kde/breeze-6.7.2-aarch64-1.txz:  Upgraded.
kde/breeze-grub-6.7.2-aarch64-1.txz:  Added.
kde/breeze-gtk-6.7.2-aarch64-1.txz:  Upgraded.
kde/calendarsupport-26.04.3-aarch64-1.txz:  Upgraded.
kde/calligra-26.04.3-aarch64-1.txz:  Upgraded.
  Compiled against poppler-26.07.0.
kde/cantor-26.04.3-aarch64-1.txz:  Upgraded.
  Compiled against poppler-26.07.0.
kde/colord-kde-26.04.3-aarch64-1.txz:  Upgraded.
kde/dolphin-26.04.3-aarch64-1.txz:  Upgraded.
kde/dolphin-plugins-26.04.3-aarch64-1.txz:  Upgraded.
kde/dragon-26.04.3-aarch64-1.txz:  Upgraded.
kde/elisa-26.04.3-aarch64-1.txz:  Upgraded.
kde/eventviews-26.04.3-aarch64-1.txz:  Upgraded.
kde/falkon-26.04.3-aarch64-1.txz:  Upgraded.
kde/ffmpegthumbs-26.04.3-aarch64-1.txz:  Upgraded.
kde/filelight-26.04.3-aarch64-1.txz:  Upgraded.
kde/francis-26.04.3-aarch64-1.txz:  Upgraded.
kde/ghostwriter-26.04.3-aarch64-1.txz:  Upgraded.
kde/glaxnimate-0.6.0-aarch64-1.txz:  Added.
kde/granatier-26.04.3-aarch64-1.txz:  Upgraded.
kde/grantlee-editor-26.04.3-aarch64-1.txz:  Upgraded.
kde/grantleetheme-26.04.3-aarch64-1.txz:  Upgraded.
kde/gwenview-26.04.3-aarch64-1.txz:  Upgraded.
kde/incidenceeditor-26.04.3-aarch64-1.txz:  Upgraded.
kde/isoimagewriter-26.04.3-aarch64-1.txz:  Upgraded.
kde/itinerary-26.04.3-aarch64-1.txz:  Upgraded.
  Compiled against poppler-26.07.0.
kde/juk-26.04.3-aarch64-1.txz:  Upgraded.
kde/k3b-26.04.3-aarch64-1.txz:  Upgraded.
kde/kactivitymanagerd-6.7.2-aarch64-1.txz:  Upgraded.
kde/kaddressbook-26.04.3-aarch64-1.txz:  Upgraded.
kde/kalarm-26.04.3-aarch64-1.txz:  Upgraded.
kde/kalgebra-26.04.3-aarch64-1.txz:  Upgraded.
kde/kalk-26.04.3-aarch64-1.txz:  Upgraded.
kde/kalm-26.04.3-aarch64-1.txz:  Upgraded.
kde/kalzium-26.04.3-aarch64-1.txz:  Upgraded.
kde/kamera-26.04.3-aarch64-1.txz:  Upgraded.
kde/kamoso-26.04.3-aarch64-1.txz:  Upgraded.
kde/kanagram-26.04.3-aarch64-1.txz:  Upgraded.
kde/kapman-26.04.3-aarch64-1.txz:  Upgraded.
kde/kapptemplate-26.04.3-aarch64-1.txz:  Upgraded.
kde/kasts-26.04.3-aarch64-1.txz:  Upgraded.
kde/kate-26.04.3-aarch64-1.txz:  Upgraded.
kde/katomic-26.04.3-aarch64-1.txz:  Upgraded.
kde/kbackup-26.04.3-aarch64-1.txz:  Upgraded.
kde/kblackbox-26.04.3-aarch64-1.txz:  Upgraded.
kde/kblocks-26.04.3-aarch64-1.txz:  Upgraded.
kde/kbounce-26.04.3-aarch64-1.txz:  Upgraded.
kde/kbreakout-26.04.3-aarch64-1.txz:  Upgraded.
kde/kbruch-26.04.3-aarch64-1.txz:  Upgraded.
kde/kcachegrind-26.04.3-aarch64-1.txz:  Upgraded.
kde/kcalc-26.04.3-aarch64-1.txz:  Upgraded.
kde/kcalutils-26.04.3-aarch64-1.txz:  Upgraded.
kde/kcharselect-26.04.3-aarch64-1.txz:  Upgraded.
kde/kcolorchooser-26.04.3-aarch64-1.txz:  Upgraded.
kde/kcron-26.04.3-aarch64-1.txz:  Upgraded.
kde/kde-cli-tools-6.7.2-aarch64-1.txz:  Upgraded.
kde/kde-dev-scripts-26.04.3-aarch64-1.txz:  Upgraded.
kde/kde-dev-utils-26.04.3-aarch64-1.txz:  Upgraded.
kde/kde-gtk-config-6.7.2-aarch64-1.txz:  Upgraded.
kde/kde-inotify-survey-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdebugsettings-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdeconnect-kde-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdecoration-6.7.2-aarch64-1.txz:  Upgraded.
kde/kdeedu-data-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdegraphics-mobipocket-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdegraphics-thumbnailers-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdenetwork-filesharing-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdenlive-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdepim-addons-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdepim-runtime-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdeplasma-addons-6.7.2-aarch64-1.txz:  Upgraded.
kde/kdesdk-kio-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdesdk-thumbnailers-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdev-php-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdev-python-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdevelop-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdf-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdialog-26.04.3-aarch64-1.txz:  Upgraded.
kde/kdiamond-26.04.3-aarch64-1.txz:  Upgraded.
kde/keditbookmarks-26.04.3-aarch64-1.txz:  Upgraded.
kde/keysmith-26.04.3-aarch64-1.txz:  Upgraded.
kde/kfilemetadata-6.27.0-aarch64-2.txz:  Rebuilt.
  Recompiled against poppler-26.07.0.
kde/kfilemetadata5-5.116.0-aarch64-25.txz:  Rebuilt.
  Recompiled against poppler-26.07.0.
kde/kfind-26.04.3-aarch64-1.txz:  Upgraded.
kde/kfourinline-26.04.3-aarch64-1.txz:  Upgraded.
kde/kgamma-6.7.2-aarch64-1.txz:  Upgraded.
kde/kgeography-26.04.3-aarch64-1.txz:  Upgraded.
kde/kget-26.04.3-aarch64-1.txz:  Upgraded.
kde/kglobalacceld-6.7.2-aarch64-1.txz:  Upgraded.
kde/kgoldrunner-26.04.3-aarch64-1.txz:  Upgraded.
kde/kgpg-26.04.3-aarch64-1.txz:  Upgraded.
kde/kgraphviewer-26.04.3-aarch64-1.txz:  Upgraded.
kde/khangman-26.04.3-aarch64-1.txz:  Upgraded.
kde/khealthcertificate-26.04.3-aarch64-1.txz:  Upgraded.
kde/khelpcenter-26.04.3-aarch64-1.txz:  Upgraded.
kde/kidentitymanagement-26.04.3-aarch64-1.txz:  Upgraded.
kde/kig-26.04.3-aarch64-1.txz:  Upgraded.
kde/kigo-26.04.3-aarch64-1.txz:  Upgraded.
kde/kile-20260628_f8768d56-aarch64-1.txz:  Upgraded.
  Compiled against poppler-26.07.0.
kde/killbots-26.04.3-aarch64-1.txz:  Upgraded.
kde/kimagemapeditor-26.04.3-aarch64-1.txz:  Upgraded.
kde/kimap-26.04.3-aarch64-1.txz:  Upgraded.
kde/kinfocenter-6.7.2-aarch64-1.txz:  Upgraded.
kde/kio-admin-26.04.3-aarch64-1.txz:  Upgraded.
kde/kio-extras-26.04.3-aarch64-1.txz:  Upgraded.
kde/kio-gdrive-26.04.3-aarch64-1.txz:  Upgraded.
kde/kio-zeroconf-26.04.3-aarch64-1.txz:  Upgraded.
kde/kirigami-gallery-26.04.3-aarch64-1.txz:  Upgraded.
kde/kiriki-26.04.3-aarch64-1.txz:  Upgraded.
kde/kiten-26.04.3-aarch64-1.txz:  Upgraded.
kde/kitinerary-26.04.3-aarch64-1.txz:  Upgraded.
  Compiled against poppler-26.07.0.
kde/kjumpingcube-26.04.3-aarch64-1.txz:  Upgraded.
kde/kldap-26.04.3-aarch64-1.txz:  Upgraded.
kde/kleopatra-26.04.3-aarch64-1.txz:  Upgraded.
kde/klettres-26.04.3-aarch64-1.txz:  Upgraded.
kde/klickety-26.04.3-aarch64-1.txz:  Upgraded.
kde/klines-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmag-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmahjongg-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmail-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmail-account-wizard-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmailtransport-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmbox-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmenuedit-6.7.2-aarch64-1.txz:  Upgraded.
kde/kmime-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmines-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmix-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmousetool-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmouth-26.04.3-aarch64-1.txz:  Upgraded.
kde/kmplot-26.04.3-aarch64-1.txz:  Upgraded.
kde/knavalbattle-26.04.3-aarch64-1.txz:  Upgraded.
kde/knetwalk-26.04.3-aarch64-1.txz:  Upgraded.
kde/knights-26.04.3-aarch64-1.txz:  Upgraded.
kde/knighttime-6.7.2-aarch64-1.txz:  Upgraded.
kde/koko-26.04.3-aarch64-1.txz:  Upgraded.
kde/kolf-26.04.3-aarch64-1.txz:  Upgraded.
kde/kollision-26.04.3-aarch64-1.txz:  Upgraded.
kde/kolourpaint-26.04.3-aarch64-1.txz:  Upgraded.
kde/kompare-26.04.3-aarch64-1.txz:  Upgraded.
kde/konqueror-26.04.3-aarch64-1.txz:  Upgraded.
kde/konquest-26.04.3-aarch64-1.txz:  Upgraded.
kde/konsole-26.04.3-aarch64-1.txz:  Upgraded.
kde/kontact-26.04.3-aarch64-1.txz:  Upgraded.
kde/kontactinterface-26.04.3-aarch64-1.txz:  Upgraded.
kde/kontrast-26.04.3-aarch64-1.txz:  Upgraded.
kde/konversation-26.04.3-aarch64-1.txz:  Upgraded.
kde/kopeninghours-26.04.3-aarch64-1.txz:  Upgraded.
kde/korganizer-26.04.3-aarch64-1.txz:  Upgraded.
kde/kosmindoormap-26.04.3-aarch64-1.txz:  Upgraded.
kde/kpat-26.04.3-aarch64-1.txz:  Upgraded.
kde/kpimtextedit-26.04.3-aarch64-1.txz:  Upgraded.
kde/kpipewire-6.7.2-aarch64-1.txz:  Upgraded.
kde/kpkpass-26.04.3-aarch64-1.txz:  Upgraded.
kde/kpmcore-26.04.3-aarch64-1.txz:  Upgraded.
kde/kpublictransport-26.04.3-aarch64-1.txz:  Upgraded.
kde/kqtquickcharts-26.04.3-aarch64-1.txz:  Upgraded.
kde/kquickimageeditor-0.6.2.1-aarch64-1.txz:  Upgraded.
kde/krdc-26.04.3-aarch64-1.txz:  Upgraded.
kde/krdp-6.7.2-aarch64-1.txz:  Upgraded.
kde/kreversi-26.04.3-aarch64-1.txz:  Upgraded.
kde/krfb-26.04.3-aarch64-1.txz:  Upgraded.
kde/krita-6.0.2.1-aarch64-2.txz:  Rebuilt.
  Recompiled against poppler-26.07.0.
kde/kruler-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksanecore-26.04.3-aarch64-1.txz:  Upgraded.
kde/kscreen-6.7.2-aarch64-1.txz:  Upgraded.
kde/kscreenlocker-6.7.2-aarch64-1.txz:  Upgraded.
kde/kshisen-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksirk-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksmtp-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksnakeduel-26.04.3-aarch64-1.txz:  Upgraded.
kde/kspaceduel-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksquares-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksshaskpass-6.7.2-aarch64-1.txz:  Upgraded.
kde/ksudoku-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksystemlog-26.04.3-aarch64-1.txz:  Upgraded.
kde/ksystemstats-6.7.2-aarch64-1.txz:  Upgraded.
kde/kteatime-26.04.3-aarch64-1.txz:  Upgraded.
kde/ktextaddons-2.1.0-aarch64-1.txz:  Upgraded.
kde/ktimer-26.04.3-aarch64-1.txz:  Upgraded.
kde/ktnef-26.04.3-aarch64-1.txz:  Upgraded.
kde/ktorrent-26.04.3-aarch64-1.txz:  Upgraded.
kde/ktouch-26.04.3-aarch64-1.txz:  Upgraded.
kde/ktuberling-26.04.3-aarch64-1.txz:  Upgraded.
kde/kturtle-26.04.3-aarch64-1.txz:  Upgraded.
kde/kubrick-26.04.3-aarch64-1.txz:  Upgraded.
kde/kunifiedpush-26.04.3-aarch64-1.txz:  Upgraded.
kde/kwallet-pam-6.7.2-aarch64-1.txz:  Upgraded.
kde/kwalletmanager-26.04.3-aarch64-1.txz:  Upgraded.
kde/kwave-26.04.3-aarch64-1.txz:  Upgraded.
kde/kwayland-6.7.2-aarch64-1.txz:  Upgraded.
kde/kwayland-integration-6.7.2-aarch64-1.txz:  Upgraded.
kde/kweathercore-26.04.3-aarch64-1.txz:  Upgraded.
kde/kwin-6.7.2-aarch64-1.txz:  Upgraded.
kde/kwin-x11-6.7.2-aarch64-1.txz:  Upgraded.
kde/kwordquiz-26.04.3-aarch64-1.txz:  Upgraded.
kde/kwrited-6.7.2-aarch64-1.txz:  Upgraded.
kde/layer-shell-qt-6.7.2-aarch64-1.txz:  Upgraded.
kde/libgravatar-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkcddb-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkdcraw-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkdegames-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkdepim-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkeduvocdocument-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkexiv2-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkgapi-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkleo-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkmahjongg-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkomparediff2-26.04.3-aarch64-1.txz:  Upgraded.
kde/libksane-26.04.3-aarch64-1.txz:  Upgraded.
kde/libkscreen-6.7.2-aarch64-1.txz:  Upgraded.
kde/libksieve-26.04.3-aarch64-1.txz:  Upgraded.
kde/libksysguard-6.7.2-aarch64-1.txz:  Upgraded.
kde/libktorrent-26.04.3-aarch64-1.txz:  Upgraded.
kde/libplasma-6.7.2-aarch64-1.txz:  Upgraded.
kde/lokalize-26.04.3-aarch64-1.txz:  Upgraded.
kde/lskat-26.04.3-aarch64-1.txz:  Upgraded.
kde/mailcommon-26.04.3-aarch64-1.txz:  Upgraded.
kde/mailimporter-26.04.3-aarch64-1.txz:  Upgraded.
kde/marble-26.04.3-aarch64-1.txz:  Upgraded.
kde/markdownpart-26.04.3-aarch64-1.txz:  Upgraded.
kde/massif-visualizer-26.04.3-aarch64-1.txz:  Upgraded.
kde/mbox-importer-26.04.3-aarch64-1.txz:  Upgraded.
kde/merkuro-26.04.3-aarch64-1.txz:  Upgraded.
kde/messagelib-26.04.3-aarch64-1.txz:  Upgraded.
kde/milou-6.7.2-aarch64-1.txz:  Upgraded.
kde/mimetreeparser-26.04.3-aarch64-1.txz:  Upgraded.
kde/minuet-26.04.3-aarch64-1.txz:  Upgraded.
kde/neochat-26.04.3-aarch64-1.txz:  Upgraded.
kde/ocean-sound-theme-6.7.2-aarch64-1.txz:  Upgraded.
kde/okular-26.04.3-aarch64-1.txz:  Upgraded.
  Compiled against poppler-26.07.0.
kde/oxygen-6.7.2-aarch64-1.txz:  Upgraded.
kde/oxygen-sounds-6.7.2-aarch64-1.txz:  Upgraded.
kde/palapeli-26.04.3-aarch64-1.txz:  Upgraded.
kde/parley-26.04.3-aarch64-1.txz:  Upgraded.
kde/partitionmanager-26.04.3-aarch64-1.txz:  Upgraded.
kde/picmi-26.04.3-aarch64-1.txz:  Upgraded.
kde/pim-data-exporter-26.04.3-aarch64-1.txz:  Upgraded.
kde/pim-sieve-editor-26.04.3-aarch64-1.txz:  Upgraded.
kde/pimcommon-26.04.3-aarch64-1.txz:  Upgraded.
kde/plasma-activities-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-activities-stats-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-bigscreen-6.7.2-aarch64-1.txz:  Added.
kde/plasma-browser-integration-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-desktop-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-disks-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-firewall-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-integration-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-nano-6.7.2-aarch64-1.txz:  Added.
  Needed by plasma-bigscreen-6.7.1.
kde/plasma-nm-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-pa-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-sdk-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-systemmonitor-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-vault-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-workspace-6.7.2-aarch64-1.txz:  Upgraded.
kde/plasma-workspace-wallpapers-6.7.2-noarch-1.txz:  Upgraded.
kde/plasma5support-6.7.2-aarch64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-6.7.2-aarch64-1.txz:  Upgraded.
kde/powerdevil-6.7.2-aarch64-1.txz:  Upgraded.
kde/poxml-26.04.3-aarch64-1.txz:  Upgraded.
kde/print-manager-6.7.2-aarch64-1.txz:  Upgraded.
kde/qqc2-breeze-style-6.7.2-aarch64-1.txz:  Upgraded.
kde/qrca-26.04.3-aarch64-1.txz:  Upgraded.
kde/rocs-26.04.3-aarch64-1.txz:  Upgraded.
kde/sddm-kcm-6.7.2-aarch64-1.txz:  Upgraded.
kde/skanlite-26.04.3-aarch64-1.txz:  Upgraded.
kde/skanpage-26.04.3-aarch64-1.txz:  Upgraded.
kde/skladnik-26.04.3-aarch64-1.txz:  Upgraded.
kde/spectacle-6.7.2-aarch64-1.txz:  Upgraded.
kde/stellarsolver-2.8-aarch64-1.txz:  Upgraded.
kde/step-26.04.3-aarch64-1.txz:  Upgraded.
kde/svgpart-26.04.3-aarch64-1.txz:  Upgraded.
kde/sweeper-26.04.3-aarch64-1.txz:  Upgraded.
kde/systemsettings-6.7.2-aarch64-1.txz:  Upgraded.
kde/tokodon-26.04.3-aarch64-1.txz:  Upgraded.
kde/umbrello-26.04.3-aarch64-1.txz:  Upgraded.
kde/union-6.7.2-aarch64-1.txz:  Upgraded.
kde/wacomtablet-6.7.2-aarch64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-6.7.2-aarch64-1.txz:  Upgraded.
kde/yakuake-26.04.3-aarch64-1.txz:  Upgraded.
kde/zanshin-26.04.3-aarch64-1.txz:  Upgraded.
l/SDL3-3.4.12-aarch64-1.txz:  Upgraded.
l/accountsservice-26.27.3-aarch64-1.txz:  Upgraded.
l/appstream-1.1.3-aarch64-1.txz:  Upgraded.
l/at-spi2-core-2.60.5-aarch64-1.txz:  Upgraded.
l/ddcutil-2.2.7-aarch64-1.txz:  Added.
  Needed by powerdevil-6.7.1.
  Thanks to sasha69.
  Don't require an i2c group.
  Drop redundant dri rule.
  Thanks to Petri Kaukasoina.
  Put the udev rules in the right place.
  Thanks to gmgf.
l/enchant-2.8.18-aarch64-1.txz:  Upgraded.
l/expat-2.8.2-aarch64-1.txz:  Upgraded.
  This update fixes security issues.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2026-50219
    https://www.cve.org/CVERecord?id=CVE-2026-56131
    https://www.cve.org/CVERecord?id=CVE-2026-56132
    https://www.cve.org/CVERecord?id=CVE-2026-56403
    https://www.cve.org/CVERecord?id=CVE-2026-56404
    https://www.cve.org/CVERecord?id=CVE-2026-56405
    https://www.cve.org/CVERecord?id=CVE-2026-56406
    https://www.cve.org/CVERecord?id=CVE-2026-56407
    https://www.cve.org/CVERecord?id=CVE-2026-56408
    https://www.cve.org/CVERecord?id=CVE-2026-56409
    https://www.cve.org/CVERecord?id=CVE-2026-56410
    https://www.cve.org/CVERecord?id=CVE-2026-56411
    https://www.cve.org/CVERecord?id=CVE-2026-56412
  (* Security fix *)
l/fluidsynth-2.5.6-aarch64-1.txz:  Upgraded.
l/frei0r-plugins-3.2.3-aarch64-1.txz:  Upgraded.
l/gdk-pixbuf2-2.44.7-aarch64-1.txz:  Upgraded.
l/gexiv2-0.16.1-aarch64-1.txz:  Upgraded.
l/gjs-1.88.1-aarch64-1.txz:  Upgraded.
l/glib2-2.88.2-aarch64-1.txz:  Upgraded.
l/glibmm2-2.88.1-aarch64-1.txz:  Upgraded.
l/gspell-1.14.4-aarch64-1.txz:  Upgraded.
l/gvfs-1.60.1-aarch64-1.txz:  Upgraded.
l/isl-0.28-aarch64-1.txz:  Upgraded.
l/jansson-2.15.1-aarch64-1.txz:  Upgraded.
l/json-c-0.19-aarch64-1.txz:  Upgraded.
l/libadwaita-1.9.2-aarch64-1.txz:  Upgraded.
l/libarchive-3.8.8-aarch64-1.txz:  Upgraded.
  Libarchive 3.8.8 is a security, bugfix and minor feature release.
  For more information, see:
    https://github.com/libarchive/libarchive/releases/tag/v3.8.8
  (* Security fix *)
l/libass-0.17.5-aarch64-1.txz:  Upgraded.
  Another small release, this time mainly fixing two out-of-bounds write
  memory bugs. As usual with memory write bugs in C, this could in theory
  be used for exploits and as such two CVE assignments are pending. In
  practice, we do not have knowledge of any actual exploit existing nor
  a way to achieve anything but simple DOS. The specific constraints in
  these bugs as well as commonly deployed defence mechanisms like ASLR are
  believed to make meaningfully exploiting them quite hard.
  For more information, see:
    https://github.com/libass/libass/security/advisories/GHSA-pjjp-65r7-ppgm
    https://github.com/libass/libass/security/advisories/GHSA-5gf7-wjfm-vmvm
  (* Security fix *)
l/libcec-7.1.1-aarch64-1.txz:  Added.
  Needed by plasma-bigscreen-6.7.1.
  Thanks to Larry Hajali and Jeremy Hansen.
l/libevent-2.1.13-aarch64-1.txz:  Upgraded.
  This release contains several security fixes, affecting users of the
  following modules: evbuffer, bufferevent, evtag, evrpc, evdns, evhttp.
  If you have a program that uses one of those modules you should upgrade.
  (* Security fix *)
l/libfyaml-0.9.6-aarch64-1.txz:  Upgraded.
l/libid3tag-0.16.4-aarch64-1.txz:  Upgraded.
  Switch to the maintained fork from the Tenacity Team.
l/libjpeg-turbo-3.2.0-aarch64-1.txz:  Upgraded.
l/libpsl-0.22.0-aarch64-1.txz:  Upgraded.
l/librevenge-0.0.6-aarch64-1.txz:  Upgraded.
l/libseccomp-2.6.1-aarch64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  Fix incorrect 64-bit comparison merge that can weaken libseccomp filters.
  Fix issue where oversized libseccomp filters can trigger a double free.
  Fix issue where oversized libseccomp filters can trigger a heap corruption.
  For more information, see:
    https://github.com/seccomp/libseccomp/security/advisories/GHSA-4q85-33p6-j5g6
    https://github.com/seccomp/libseccomp/security/advisories/GHSA-46fr-jh49-xvhx
    https://github.com/seccomp/libseccomp/security/advisories/GHSA-2hqh-5c36-grrm`
  (* Security fix *)
l/libtiff-4.7.2-aarch64-1.txz:  Upgraded.
l/liburing-2.15-aarch64-1.txz:  Upgraded.
l/libxmlb-0.3.28-aarch64-1.txz:  Upgraded.
l/lmdb-1.0.0-aarch64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/netpbm-11.15.01-aarch64-1.txz:  Upgraded.
l/nodejs-24.18.0-aarch64-1.txz:  Upgraded.
l/p8-platform-2.1.0.1-aarch64-1.txz:  Added.
  Needed by libcec-7.1.1.
  Thanks to Larry Hajali and Jeremy Hansen.
l/pango-1.58.0-aarch64-1.txz:  Upgraded.
l/pangomm2-2.56.2-aarch64-1.txz:  Upgraded.
l/pipewire-1.6.7-aarch64-2.txz:  Rebuilt.
  pipewire.sh: leave the (sourced) script with "return", not "exit".
  Thanks to Petri Kaukasoina.
  pipewire.{csh,sh}: don't try to start daemon if it's already running.
  Thanks to Petri Kaukasoina.
  If we don't find the required binaries, bail.
  Add profile scripts to start Pipewire for use on the console.
  Thanks to garpu, 0XBF, and Petri Kaukasoina.
  Fix a few corner cases:
  If /etc/xdg/autostart/pulseaudio.desktop is installed, disable it.
  Use --ns $$ when killing Pulseaudio.
  When disabling Pipewire, be sure /etc/xdg/autostart/pulseaudio.desktop is
  installed.
  Add the pipewire-jack libraries to the ld.so path. Thanks to garpu.
  Recompile the GSettings XML schema files.
  Install gsettings schema for Pulseaudio.
  Enable pipewire-jack and install the Jack development files.
  Make Pipewire the default multimedia framework.
l/poppler-26.07.0-aarch64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/pulseaudio-17.0-aarch64-6.txz:  Rebuilt.
  Disable autostart and autospawn to get out of the way of Pipewire.
l/pycurl-7.47.0-aarch64-1.txz:  Upgraded.
l/python-numpy-2.5.1-aarch64-1.txz:  Upgraded.
l/python-pillow-12.3.0-aarch64-1.txz:  Upgraded.
l/python-pyproject_metadata-0.12.1-aarch64-1.txz:  Upgraded.
l/python-setuptools_scm-10.2.0-aarch64-1.txz:  Upgraded.
l/python-vcs_versioning-2.2.2-aarch64-1.txz:  Upgraded.
l/qtkeychain-0.17.0-aarch64-1.txz:  Upgraded.
l/quazip-1.7.2-aarch64-1.txz:  Upgraded.
l/shared-mime-info-2.4-aarch64-3.txz:  Rebuilt.
  Reverted. Isn't this stuff pretty much nailed down?
  Giving it needless "maintenance" is just asking for regressions.
  Thanks to USUARIONUEVO.
l/spirv-llvm-translator-22.1.4-aarch64-1.txz:  Upgraded.
l/wireplumber-0.5.15-aarch64-2.txz:  Rebuilt.
  Install the autostart file as wireplumber.desktop, not
  wireplumber.desktop.sample.
  Thanks to Petri Kaukasoina.
n/bind-9.20.24-aarch64-2.txz:  Rebuilt.
  Recompiled against lmdb-1.0.0.
n/bluez-5.87-aarch64-1.txz:  Upgraded.
n/c-ares-1.34.7-aarch64-1.txz:  Upgraded.
  This release fixes the following security issues:
  Use-after-free / double-free in c-ares' query-completion handling, remotely
  triggerable via ares_getaddrinfo() over TCP.
  CPU-exhaustion denial of service via unbounded DNS name compression pointer
  chains.
  Memory-amplification denial of service via unvalidated DNS header record
  counts.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2026-33630
    https://github.com/c-ares/c-ares/security/advisories/GHSA-6wfj-rwm7-3542
    https://github.com/c-ares/c-ares/security/advisories/GHSA-pjmc-gx33-gc76
    https://github.com/c-ares/c-ares/security/advisories/GHSA-jv8r-gqr9-68wj
  (* Security fix *)
n/curl-8.21.0-aarch64-1.txz:  Upgraded.
n/fetchmail-6.6.6-aarch64-1.txz:  Upgraded.
  This release contains an important bugfix:
  The IMAP client, which has always used message indexes for the selected
  mailbox, did not abort when receiving an EXPUNGE response - which changes
  message numbers inside the mailbox.  Unlike UIDs, the message numbers are
  not stable and fetchmail does not have internal interfaces to track which
  messages are deleted, and adding those to a 6.6.X release would be too
  risky, and switching to UID is also too big a change, so we have no
  choice but to abort the session when seeing an EXPUNGE response without
  our own EXPUNGE request, to avoid marking the wrong message as seen/deleted
  or skip the wrong one, or assume the wrong message size.
  Earl Chew reported this versus Yahoo Mail via Gitlab Work Item #91, which
  automatically expunges messages that are marked with the \Deleted flag.
n/gnupg2-2.5.21-aarch64-1.txz:  Upgraded.
n/gpgme-2.1.2-aarch64-1.txz:  Upgraded.
n/krb5-1.22.2-aarch64-3.txz:  Rebuilt.
  Recompiled against lmdb-1.0.0.
n/mutt-2.4.1-aarch64-1.txz:  Upgraded.
  This update fixes a security issue:
  Prevent unsigned int overflow in imap_cmd_step buffer growth.
  The idata->blen field is unsigned int (32-bit) while the companion
  variable len is size_t (64-bit on LP64). When a malicious IMAP server
  sends a response line longer than UINT_MAX bytes without newline, the
  expression wraps to a small value, causing safe_realloc() to shrink the
  buffer while len retains its original huge value. The subsequent
  mutt_socket_readln() then writes far past the shrunken allocation.
  Fix by changing idata->blen from unsigned int to size_t, matching the
  type of len and preventing the overflow on all platforms.
  (* Security fix *)
  Recompiled against lmdb-1.0.0.
n/nghttp3-1.17.0-aarch64-1.txz:  Upgraded.
n/ngtcp2-1.24.0-aarch64-1.txz:  Upgraded.
n/openssh-10.4p1-aarch64-1.txz:  Upgraded.
  This release contains a number of security fixes:
  sftp(1): when downloading files on the command-line using
  "sftp host:/path .", a malicious server could cause the file to
  be downloaded to an unexpected location. This issue was identified
  by the Swival Security Scanner.
  scp(1): when copying files between two remote destinations, do
  not allow a malicious server to write files to the parent
  directory of the intended target directory.  This issue was
  identified by the Swival Security Scanner.
  sshd(8): when using the "internal-sftp" SFTP server implementation
  (this is not the default), long command lines were previously
  truncated silently after the 9th argument. If a security-relevant
  option was in the 10th or later position, it would be discarded.
  Reported by Steve Caffrey.
  sshd(8): add a documentation note to mention that the
  GSSAPIStrictAcceptorCheck option is ineffective when the server
  is joined to a Windows Active Directory. Reported by Yarin Aharoni
  of Safebreach.
  sshd(8): DisableForwarding=yes didn't override PermitTunnel=yes
  as it was documented to do. Note that PermitTunnel is not enabled
  by default. Reported independently by Huzaifa Sidhpurwala of
  Redhat and Marko Jevtic.
  sshd(8): avoid a potential pre-authentication denial of service
  when GSSAPIAuthentication was enabled (this feature is off by
  default). This was not mitigated by MaxAuthTries, but would be
  penalised by PerSourcePenalties. This was reported by Manfred
  Kaiser of the milCERT AT (Austrian Ministry of Defence).
  sshd(8): fix a number of cases where the minimum authentication
  delay was not being enforced. Reported by the Orange Cyberdefense
  Vulnerability Team.
  ssh(1): fix a possible client-side use-after-free if the server
  changes its host key during a key reexchange. This was reported by
  Zhenpeng (Leo) Lin of Depthfirst.
  For more information, see:
    https://www.openssh.org/releasenotes.html#10.4
  (* Security fix *)
n/openvpn-2.7.5-aarch64-1.txz:  Upgraded.
n/php-8.4.23-aarch64-1.txz:  Upgraded.
  This update fixes security issues:
  Fixed memory corruption (zend_mm_heap corrupted) in openssl_encrypt with
  AES-WRAP-PAD).
  For more information, see:
    https://www.php.net/ChangeLog-8.php#8.4.23
    https://www.cve.org/CVERecord?id=CVE-2026-14355
  (* Security fix *)
n/pinentry-1.3.3-aarch64-1.txz:  Upgraded.
n/postfix-3.11.4-aarch64-2.txz:  Rebuilt.
  Fix LMDB 1.0 compatibility with a different patch.
  Thanks to teoberi.
  Resolve LMDB 1.0 compatibility.
  Thanks to teoberi.
  Recompiled against lmdb-1.0.0.
n/samba-4.24.4-aarch64-1.txz:  Upgraded.
  Recompiled against lmdb-1.0.0.
n/socat-1.8.1.3-aarch64-1.txz:  Upgraded.
n/stunnel-5.79-aarch64-1.txz:  Upgraded.
n/tftp-hpa-5.4-aarch64-1.txz:  Upgraded.
x/OpenCC-1.3.2-aarch64-1.txz:  Upgraded.
x/fcitx5-5.1.21-aarch64-1.txz:  Upgraded.
x/ibus-m17n-1.4.40-aarch64-1.txz:  Upgraded.
x/igt-gpu-tools-2.5-aarch64-1.txz:  Upgraded.
x/libva-2.24.0-aarch64-1.txz:  Upgraded.
x/mesa-26.1.4-aarch64-1.txz:  Upgraded.
x/noto-fonts-ttf-2026.07.01-noarch-1.txz:  Upgraded.
x/ttf-tlwg-0.7.4-aarch64-1.txz:  Upgraded.
x/xclock-1.2.0-aarch64-1.txz:  Upgraded.
x/xedit-1.2.5-aarch64-1.txz:  Upgraded.
x/xfontsel-1.1.2-aarch64-1.txz:  Upgraded.
x/xinit-1.4.4-aarch64-2.txz:  Rebuilt.
  startx: if the active xinitrc is asking for Plasma, but kwin_x11 has gone
  missing (as it soon will), then just seamlessly start Plasma Wayland instead.
xap/ffmpegthumbnailer-2.3.0-aarch64-3.txz:  Rebuilt.
  Recompile this against ffmpeg-8.1.2 to address reported stability issues.
  Thanks to bigbadaboum.
xap/freerdp-3.28.0-aarch64-1.txz:  Upgraded.
  This update fixes security issues.
  For more information, see:
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-pjqx-v446-x7fc
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-9g22-w2gr-vcmp
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-f27x-frr8-j9hc
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-72j9-356v-88xq
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-v64m-xxfw-hrv6
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mp3f-59pg-c5pp
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47fr-jw86-c3fj
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-v5wf-j8j4-77h7
    https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rq8f-9xjh-pr3m
  (* Security fix *)
xap/geeqie-2.9-aarch64-1.txz:  Upgraded.
xap/mozilla-thunderbird-140.12.1esr-aarch64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/140.12.1esr/releasenotes/
  (* Security fix *)
xap/vim-gvim-9.2.0758-aarch64-1.txz:  Upgraded.
xap/xaos-4.3.6-aarch64-1.txz:  Upgraded.
extra/bash-completion/bash-completion-2.18.0-aarch64-1.txz:  Upgraded.
installer/*:  Rebuilt.
  Added LVM thin-provisioning-tools.
kernels/*:  Upgraded.


If you appreciate what we're doing with Slackware Linux on ARM, please consider
making a donation to support the project. Contributions go directly toward
maintaining essential build hardware, covering electricity costs, and keeping
this long-running labour of love alive and moving forward.
Every bit helps and is genuinely appreciated.

You can find out how to contribute here:
  https://arm.slackware.com/sponsor/

Thank you for your continued support!

  Stuart Winter <mozes@slackware>
  Brent Earl <el0226@slackware>

a/kernel_armv8-6.18.36-aarch64-2.txz:  Rebuilt.
  /boot/dtb/freescale/fsl-lx2160a-honeycomb.dtb: add missing #pinctrl-cells
  to pinmux node. This is for the HoneyComb LX2.  It helps resolve the missing
  NIC after power on, and makes the MMC work when Device Tree is in use.
a/phytool-2-aarch64-1.txz:  Added.
  phytool is a command-line utility for reading and writing Ethernet PHY
  registers through the Linux kernel's SIOCGMIIREG and SIOCSMIIREG interfaces.
  It's useful for debugging, such as when your NIC is a no show.
a/sysvinit-scripts-15.1-noarch-47.txz:  Rebuilt.
  Only run the DKMS autoinstaller if there are registered modules.
  Thanks to glennmcc.
d/kernel-headers-6.18.36-aarch64-2.txz:  Rebuilt.
k/kernel-source-6.18.36-aarch64-2.txz:  Rebuilt.
kde/digikam-9.1.0-aarch64-2.txz:  Rebuilt.
  Recompiled against imagemagick-7.1.2_26 and openjph-0.30.1.
l/dvdauthor-0.7.2-aarch64-6.txz:  Rebuilt.
  Recompiled against imagemagick-7.1.2_26.
l/imagemagick-7.1.2_26-aarch64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/openexr-3.4.13-aarch64-2.txz:  Rebuilt.
  Recompiled against openjph-0.30.1.
l/openjph-0.30.1-aarch64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/python-numpy-2.5.0-aarch64-1.txz:  Upgraded.
l/python-setuptools_scm-10.1.1-aarch64-1.txz:  Upgraded.
l/python-vcs_versioning-2.0.1-aarch64-1.txz:  Upgraded.
xap/xine-lib-1.2.13-aarch64-17.txz:  Rebuilt.
  Recompiled against imagemagick-7.1.2_26.
installer/*:  Rebuilt.
kernels/*:  Rebuilt.

ChangeLog Slackware stable

ChangeLog x86 Rss - ChangeLog x86_64 Rss

patches/packages/c-ares-1.34.8-x86_64-1_slack15.0.txz:  Upgraded.
  This is a bugfix release.
patches/packages/libXfont2-2.0.8-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes security issues:
  BitmapScaleBitmaps Integer Overflow Heap Buffer Overflow.
  PCF Font Parsing Heap Buffer Overflow.
  computeProps Property Buffer Heap Buffer Overflow.
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062253.html
    https://www.cve.org/CVERecord?id=CVE-2026-56001
    https://www.cve.org/CVERecord?id=CVE-2026-56002
    https://www.cve.org/CVERecord?id=CVE-2026-56003
  (* Security fix *)
patches/packages/proftpd-1.3.9c-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  ExecEnviron values not passed due to regression since 1.3.8.d.
  Stack buffer overflow in MLSD/MLST handling for long path names.
  MaxTransfersPerUser no longer enforces configured limits.
  AdminControlsACLs for config, get actions not honored as they should be.
  Memcached/Redis-cached JSON TLS session/OCSP entries decoded into fixed
  buffers without bounds checking.
  RewriteMap unescape builtin use causes one-byte out-of-bounds write,
  fails to reject illegal characters.
  SQL group name lookup concatenates client-provided group names without
  escaping.
  Authenticated SFTP sessions can overflow the SFTP packet buffer.
  Default Controls socket ACLs unintentionally allow all users access for
  sending Controls requests.
  (* Security fix *)
patches/packages/xorg-server-1.20.14-x86_64-21_slack15.0.txz:  Rebuilt.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)
patches/packages/xorg-server-xephyr-1.20.14-x86_64-21_slack15.0.txz:  Rebuilt.
patches/packages/xorg-server-xnest-1.20.14-x86_64-21_slack15.0.txz:  Rebuilt.
patches/packages/xorg-server-xvfb-1.20.14-x86_64-21_slack15.0.txz:  Rebuilt.
patches/packages/xorg-server-xwayland-21.1.4-x86_64-19_slack15.0.txz:  Rebuilt.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)

patches/packages/tftp-hpa-5.4-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  Fix several security-relevant bugs in path validation
  (tftpd/path.c): an uninitialized buffer read and a broken
  path tokenizer could let a crafted or unlucky request bypass
  path restrictions or crash the daemon.
  Fix buffer overflows in the tftp client: an unbounded strcpy()
  when building requests, an out-of-bounds write when putting
  multiple files to a remote directory, and an unbounded write
  into the interactive command-line argument array.
  Fix an out-of-bounds read while scanning request fields in
  tftpd, and an incorrect address family used when creating the
  per-transfer socket on platforms without recvmsg().
  (* Security fix *)

patches/packages/c-ares-1.34.7-x86_64-1_slack15.0.txz:  Upgraded.
  This release fixes the following security issues:
  Use-after-free / double-free in c-ares' query-completion handling, remotely
  triggerable via ares_getaddrinfo() over TCP.
  CPU-exhaustion denial of service via unbounded DNS name compression pointer
  chains.
  Memory-amplification denial of service via unvalidated DNS header record
  counts.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2026-33630
    https://github.com/c-ares/c-ares/security/advisories/GHSA-6wfj-rwm7-3542
    https://github.com/c-ares/c-ares/security/advisories/GHSA-pjmc-gx33-gc76
    https://github.com/c-ares/c-ares/security/advisories/GHSA-jv8r-gqr9-68wj
  (* Security fix *)
patches/packages/openssh-10.4p1-x86_64-1_slack15.0.txz:  Upgraded.
  This release contains a number of security fixes:
  sftp(1): when downloading files on the command-line using
  "sftp host:/path .", a malicious server could cause the file to
  be downloaded to an unexpected location. This issue was identified
  by the Swival Security Scanner.
  scp(1): when copying files between two remote destinations, do
  not allow a malicious server to write files to the parent
  directory of the intended target directory.  This issue was
  identified by the Swival Security Scanner.
  sshd(8): when using the "internal-sftp" SFTP server implementation
  (this is not the default), long command lines were previously
  truncated silently after the 9th argument. If a security-relevant
  option was in the 10th or later position, it would be discarded.
  Reported by Steve Caffrey.
  sshd(8): add a documentation note to mention that the
  GSSAPIStrictAcceptorCheck option is ineffective when the server
  is joined to a Windows Active Directory. Reported by Yarin Aharoni
  of Safebreach.
  sshd(8): DisableForwarding=yes didn't override PermitTunnel=yes
  as it was documented to do. Note that PermitTunnel is not enabled
  by default. Reported independently by Huzaifa Sidhpurwala of
  Redhat and Marko Jevtic.
  sshd(8): avoid a potential pre-authentication denial of service
  when GSSAPIAuthentication was enabled (this feature is off by
  default). This was not mitigated by MaxAuthTries, but would be
  penalised by PerSourcePenalties. This was reported by Manfred
  Kaiser of the milCERT AT (Austrian Ministry of Defence).
  sshd(8): fix a number of cases where the minimum authentication
  delay was not being enforced. Reported by the Orange Cyberdefense
  Vulnerability Team.
  ssh(1): fix a possible client-side use-after-free if the server
  changes its host key during a key reexchange. This was reported by
  Zhenpeng (Leo) Lin of Depthfirst.
  For more information, see:
    https://www.openssh.org/releasenotes.html#10.4
  (* Security fix *)

ChangeLog Slackware arm stable

ChangeLog arm Rss

testing/packages/autoconf-2.73-noarch-1_slack15.0.txz:  Added.
patches/packages/c-ares-1.34.8-arm-1_slack15.0.txz:  Upgraded.
  This is a bugfix release.
patches/packages/libXfont2-2.0.8-arm-1_slack15.0.txz:  Upgraded.
  This update fixes security issues:
  BitmapScaleBitmaps Integer Overflow Heap Buffer Overflow.
  PCF Font Parsing Heap Buffer Overflow.
  computeProps Property Buffer Heap Buffer Overflow.
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062253.html
    https://www.cve.org/CVERecord?id=CVE-2026-56001
    https://www.cve.org/CVERecord?id=CVE-2026-56002
    https://www.cve.org/CVERecord?id=CVE-2026-56003
  (* Security fix *)
patches/packages/proftpd-1.3.9c-arm-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  ExecEnviron values not passed due to regression since 1.3.8.d.
  Stack buffer overflow in MLSD/MLST handling for long path names.
  MaxTransfersPerUser no longer enforces configured limits.
  AdminControlsACLs for config, get actions not honored as they should be.
  Memcached/Redis-cached JSON TLS session/OCSP entries decoded into fixed
  buffers without bounds checking.
  RewriteMap unescape builtin use causes one-byte out-of-bounds write,
  fails to reject illegal characters.
  SQL group name lookup concatenates client-provided group names without
  escaping.
  Authenticated SFTP sessions can overflow the SFTP packet buffer.
  Default Controls socket ACLs unintentionally allow all users access for
  sending Controls requests.
  (* Security fix *)
patches/packages/tftp-hpa-5.4-arm-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  Fix several security-relevant bugs in path validation
  (tftpd/path.c): an uninitialized buffer read and a broken
  path tokenizer could let a crafted or unlucky request bypass
  path restrictions or crash the daemon.
  Fix buffer overflows in the tftp client: an unbounded strcpy()
  when building requests, an out-of-bounds write when putting
  multiple files to a remote directory, and an unbounded write
  into the interactive command-line argument array.
  Fix an out-of-bounds read while scanning request fields in
  tftpd, and an incorrect address family used when creating the
  per-transfer socket on platforms without recvmsg().
  (* Security fix *)
patches/packages/xorg-server-1.20.14-arm-21_slack15.0.txz:  Rebuilt.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)
patches/packages/xorg-server-xephyr-1.20.14-arm-21_slack15.0.txz:  Rebuilt.
patches/packages/xorg-server-xnest-1.20.14-arm-21_slack15.0.txz:  Rebuilt.
patches/packages/xorg-server-xvfb-1.20.14-arm-21_slack15.0.txz:  Rebuilt.
patches/packages/xorg-server-xwayland-21.1.4-arm-13_slack15.0.txz:  Rebuilt.
  This update fixes security issues:
  glamor Font Atlas Heap Buffer Overflow.
  GLX contextTags Use-After-Free in CommonMakeCurrent().
  For more information, see:
    https://lists.x.org/archives/xorg/2026-July/062255.html
    https://www.cve.org/CVERecord?id=CVE-2026-55999
    https://www.cve.org/CVERecord?id=CVE-2026-56000
  (* Security fix *)

extra/php82/php82-8.2.32-arm-1.txz:  Upgraded.
  This update fixes a security issue:
  OpenSSL: Fixed memory corruption (zend_mm_heap corrupted) in
  openssl_encrypt with AES-WRAP-PAD.
  For more information, see:
    https://www.php.net/ChangeLog-8.php#8.2.32
    https://www.cve.org/CVERecord?id=CVE-2026-14355
  (* Security fix *)
patches/packages/c-ares-1.34.7-arm-1_slack15.0.txz:  Upgraded.
  This release fixes the following security issues:
  Use-after-free / double-free in c-ares' query-completion handling, remotely
  triggerable via ares_getaddrinfo() over TCP.
  CPU-exhaustion denial of service via unbounded DNS name compression pointer
  chains.
  Memory-amplification denial of service via unvalidated DNS header record
  counts.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2026-33630
    https://github.com/c-ares/c-ares/security/advisories/GHSA-6wfj-rwm7-3542
    https://github.com/c-ares/c-ares/security/advisories/GHSA-pjmc-gx33-gc76
    https://github.com/c-ares/c-ares/security/advisories/GHSA-jv8r-gqr9-68wj
  (* Security fix *)
patches/packages/mutt-2.4.1-arm-1_slack15.0.txz:  Upgraded.
  This update fixes a security issue:
  Prevent unsigned int overflow in imap_cmd_step buffer growth.
  The idata->blen field is unsigned int (32-bit) while the companion
  variable len is size_t (64-bit on LP64). When a malicious IMAP server
  sends a response line longer than UINT_MAX bytes without newline, the
  expression wraps to a small value, causing safe_realloc() to shrink the
  buffer while len retains its original huge value. The subsequent
  mutt_socket_readln() then writes far past the shrunken allocation.
  Fix by changing idata->blen from unsigned int to size_t, matching the
  type of len and preventing the overflow on all platforms.
  (* Security fix *)
patches/packages/openssh-10.4p1-arm-1_slack15.0.txz:  Upgraded.
  This release contains a number of security fixes:
  sftp(1): when downloading files on the command-line using
  "sftp host:/path .", a malicious server could cause the file to
  be downloaded to an unexpected location. This issue was identified
  by the Swival Security Scanner.
  scp(1): when copying files between two remote destinations, do
  not allow a malicious server to write files to the parent
  directory of the intended target directory.  This issue was
  identified by the Swival Security Scanner.
  sshd(8): when using the "internal-sftp" SFTP server implementation
  (this is not the default), long command lines were previously
  truncated silently after the 9th argument. If a security-relevant
  option was in the 10th or later position, it would be discarded.
  Reported by Steve Caffrey.
  sshd(8): add a documentation note to mention that the
  GSSAPIStrictAcceptorCheck option is ineffective when the server
  is joined to a Windows Active Directory. Reported by Yarin Aharoni
  of Safebreach.
  sshd(8): DisableForwarding=yes didn't override PermitTunnel=yes
  as it was documented to do. Note that PermitTunnel is not enabled
  by default. Reported independently by Huzaifa Sidhpurwala of
  Redhat and Marko Jevtic.
  sshd(8): avoid a potential pre-authentication denial of service
  when GSSAPIAuthentication was enabled (this feature is off by
  default). This was not mitigated by MaxAuthTries, but would be
  penalised by PerSourcePenalties. This was reported by Manfred
  Kaiser of the milCERT AT (Austrian Ministry of Defence).
  sshd(8): fix a number of cases where the minimum authentication
  delay was not being enforced. Reported by the Orange Cyberdefense
  Vulnerability Team.
  ssh(1): fix a possible client-side use-after-free if the server
  changes its host key during a key reexchange. This was reported by
  Zhenpeng (Leo) Lin of Depthfirst.
  For more information, see:
    https://www.openssh.org/releasenotes.html#10.4
  (* Security fix *)

patches/packages/libseccomp-2.6.1-arm-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  Fix incorrect 64-bit comparison merge that can weaken libseccomp filters.
  Fix issue where oversized libseccomp filters can trigger a double free.
  Fix issue where oversized libseccomp filters can trigger a heap corruption.
  For more information, see:
    https://github.com/seccomp/libseccomp/security/advisories/GHSA-4q85-33p6-j5g6
    https://github.com/seccomp/libseccomp/security/advisories/GHSA-46fr-jh49-xvhx
    https://github.com/seccomp/libseccomp/security/advisories/GHSA-2hqh-5c36-grrm`
  (* Security fix *)

Aggiornamenti

Rss

Aggiornamenti di script e guide

24/02/2022: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware
15/12/2015: Aggiornato HowTo automatizzare la compilazione del kernel
15/12/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
24/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
22/11/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
07/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
05/11/2015: Nuovo HowTo Automatizzare l'aggiornamento di Slackware current
30/10/2015: Aggiornato HowTo Automatizzare la prima configurazione di Slackware
26/05/2015: Aggiornato HowTo mini Slackware su pendrive
07/05/2015: Aggiornato HowTo automatizzare la compilazione del kernel
13/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
02/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel



Automatizzare l'aggiornamento di Slackware current

Questo script provvede ad aggiornare Slackware o Slackware64 all'ultima current in maniera del tutto autonoma, dalla ricerca di aggiornamenti all'aggiornamento del bootloader.

script

Scarica la lista dei pacchetti e la confronta con quelli installati, dopodiché controlla se i nuovi pacchetti sono presenti in un eventuale DVD già montato altrimenti li scarica da internet.

Lo script può gestire anche un sistema multilib, infatti se...

Leggi tutto...

Automatizzare la prima configurazione di Slackware

Uno script da eseguire al primo avvio di Slackware.

script

Mi capita spesso di fare nuove installazioni di Slackware e di ripetere sempre le stesse operazioni atte ad una prima configurazione di base, come ad esempio l'italianizzazione o l'impostazione della corretta risoluzione framebuffer.

Per cui ho deciso di raggruppare tutte queste operazioni di base, che possono...

Leggi tutto...

Semplice sistema di sorveglianza

Ecco che la bash ci viene in aiuto anche per realizzare un semplice sistema di video sorveglianza molto economico. script

Questo script scatta una foto dalla webcam impostata nella variabile DEV con mplayer, ne fa una copia con la data corrente come nome del file per conservare una copia di tutte le foto scattate e per sapere a prima vista a quando risalgono. Dopodiché carica entrambe le copie della foto sul server ftp...

Leggi tutto...

Logitech RX1000 pulsante 5

Spesso i produttori di hardware ottengono costi di produzione più bassi utilizzando componenti con capacità superiori in dispositivi non progettati per sfruttarle piuttosto che utilizzando componenti su misura, questo è anche il caso del mio mouse Logitech RX1000. hardware

Aprendo il mouse e guardando le piste stampate sul retro della scheda si nota che il controller ha un pin inutilizzato, quindi leggendo il codice (CY7C63813) sul chip e trovandone il...

Leggi tutto...

Automatizzare la compilazione del kernel

Compilare il kernel Linux non è certamente cosa difficile, ma chi è alle prime armi spesso è spaventato da questa procedura e anche per chi è pratico a volte diventa scocciante aggiornare ad ogni release. info

Dunque ho scritto questo script bash che automatizza la procedura: rileva quanti core ha il proprio processore per decidere in quanti processi paralleli eseguire la compilazione in modo da ottimizzarne i tempi, poi controlla se la versione scelta...

Leggi tutto...



   articoli più recenti >>

Condividi sui tuoi social preferiti!

Telegram Facebook Linkedin Twitter Pinterest
.