blender-3.0.1-x86_64-1_ap.txz: Upgraded.
ap/a2ps-4.15.7-x86_64-1.txz: Upgraded.
d/ninja-1.13.1-x86_64-1.txz: Upgraded.
l/readline-8.3.001-x86_64-1.txz: Upgraded.
n/httpd-2.4.64-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
The update resolves a range of issues, including HTTP response splitting,
server-side request forgery (SSRF), and denial of service vulnerabilities.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.64
https://www.cve.org/CVERecord?id=CVE-2025-53020
https://www.cve.org/CVERecord?id=CVE-2025-49812
https://www.cve.org/CVERecord?id=CVE-2025-49630
https://www.cve.org/CVERecord?id=CVE-2025-23048
https://www.cve.org/CVERecord?id=CVE-2024-47252
https://www.cve.org/CVERecord?id=CVE-2024-43394
https://www.cve.org/CVERecord?id=CVE-2024-43204
https://www.cve.org/CVERecord?id=CVE-2024-42516
(* Security fix *)
a/kernel-firmware-20250708_99d64b4-noarch-1.txz: Upgraded.
a/kernel-generic-6.12.37-x86_64-1.txz: Upgraded.
d/kernel-headers-6.12.37-x86-1.txz: Upgraded.
k/kernel-source-6.12.37-noarch-1.txz: Upgraded.
l/libwebp-1.6.0-x86_64-1.txz: Upgraded.
n/gnutls-3.8.10-x86_64-1.txz: Upgraded.
This update fixes security issues:
libgnutls: Fix NULL pointer dereference when 2nd Client Hello omits PSK.
Reported by Stefan BÃŒhler.
libgnutls: Fix heap read buffer overrun in parsing X.509 SCTS timestamps.
Spotted by oss-fuzz and reported by OpenAI Security Research Team,
and fix developed by Andrew Hamilton.
libgnutls: Fix double-free upon error when exporting otherName in SAN.
Reported by OpenAI Security Research Team.
certtool: Fix 1-byte write buffer overrun when parsing template.
Reported by David Aitel.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2025-6395
https://www.cve.org/CVERecord?id=CVE-2025-32989
https://www.cve.org/CVERecord?id=CVE-2025-32988
https://www.cve.org/CVERecord?id=CVE-2025-32990
(* Security fix *)
n/postfix-3.10.3-x86_64-1.txz: Upgraded.
n/wireless-regdb-2025.07.10-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-140.0.1esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.0.1esr/releasenotes/
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-6.15.x/kernel-generic-6.15.6-x86_64-1.txz: Upgraded.
testing/packages/linux-6.15.x/kernel-headers-6.15.6-x86-1.txz: Upgraded.
testing/packages/linux-6.15.x/kernel-source-6.15.6-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/e2fsprogs-1.47.3-x86_64-1.txz: Upgraded.
a/tcsh-6.24.16-x86_64-1.txz: Upgraded.
d/git-2.50.1-x86_64-1.txz: Upgraded.
This update fixes various security issues.
For more information, see:
https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/
https://www.cve.org/CVERecord?id=CVE-2025-27613
https://www.cve.org/CVERecord?id=CVE-2025-27614
https://www.cve.org/CVERecord?id=CVE-2025-46334
https://www.cve.org/CVERecord?id=CVE-2025-46835
https://www.cve.org/CVERecord?id=CVE-2025-48384
https://www.cve.org/CVERecord?id=CVE-2025-48385
https://www.cve.org/CVERecord?id=CVE-2025-48386
(* Security fix *)
d/google-go-lang-1.24.5-x86_64-1.txz: Upgraded.
This update includes security fixes to the net/http package, as well as bug
fixes to cgo, the compiler, the go command, and the reflect, runtime, and
syscall packages.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2025-22870
(* Security fix *)
d/llvm-20.1.8-x86_64-1.txz: Upgraded.
l/gmm-5.4.4-noarch-1.txz: Upgraded.
l/libclc-20.1.8-x86_64-1.txz: Upgraded.
l/python-certifi-2025.7.9-x86_64-1.txz: Upgraded.
n/ca-certificates-20250709-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
xap/xscreensaver-6.12-x86_64-1.txz: Upgraded.
a/e2fsprogs-1.47.3-aarch64-1.txz: Upgraded.
a/tcsh-6.24.16-aarch64-1.txz: Upgraded.
d/git-2.50.1-aarch64-1.txz: Upgraded.
This update fixes various security issues.
For more information, see:
https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/
https://www.cve.org/CVERecord?id=CVE-2025-27613
https://www.cve.org/CVERecord?id=CVE-2025-27614
https://www.cve.org/CVERecord?id=CVE-2025-46334
https://www.cve.org/CVERecord?id=CVE-2025-46835
https://www.cve.org/CVERecord?id=CVE-2025-48384
https://www.cve.org/CVERecord?id=CVE-2025-48385
https://www.cve.org/CVERecord?id=CVE-2025-48386
(* Security fix *)
d/google-go-lang-1.24.5-aarch64-1.txz: Upgraded.
This update includes security fixes to the net/http package, as well as bug
fixes to cgo, the compiler, the go command, and the reflect, runtime, and
syscall packages.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2025-22870
(* Security fix *)
d/llvm-20.1.8-aarch64-1.txz: Upgraded.
l/gmm-5.4.4-noarch-1.txz: Upgraded.
l/libclc-20.1.8-aarch64-1.txz: Upgraded.
l/python-certifi-2025.7.9-aarch64-1.txz: Upgraded.
n/ca-certificates-20250709-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
xap/xscreensaver-6.12-aarch64-1.txz: Upgraded.
l/libgphoto2-2.5.32-aarch64-1.txz: Upgraded.
n/NetworkManager-1.52.1-aarch64-1.txz: Upgraded.
n/mtr-0.96-aarch64-1.txz: Upgraded.
n/samba-4.22.3-aarch64-1.txz: Upgraded.
This is the latest stable release of the Samba 4.22 release series.
Important Change in Upcoming Microsoft Update:
On 8th of July, Microsoft will release an important security update for
Active Directory Domain Controllers for Windows Server versions prior to
2025.
This update includes a change to the Microsoft RPC Netlogon protocol,
which improves security by tightening access checks for a set of RPC
requests. Samba running as domain members in these environments will be
impacted by this change if a specific configuration is used, see below
for which configuration is affected.
Windows Server version 2025 is already equipped with these specific
security hardenings, and Microsoft is now planning to deploy them to all
supported Windows Server versions down to Windows Server 2008.
Who is affected?
Samba installations acting as member servers in Windows AD domains will
be affected if they are configured to use the 'ad' idmapping backend.
Samba servers not using this configuration will not be affected by the
change at least to our current knowledge and understanding of the change
and no further action is required.
Current versions of Samba with the affected configuration will no longer
function correctly once the Microsoft update has been applied. Users
will not be able to connect to the SMB service provided by Samba for any
domain configured to use the 'ad' idmapping backend.
See https://bugzilla.samba.org/show_bug.cgi?id=15876.
extra/brltty/brltty-6.8-aarch64-1.txz: Upgraded.
a/kernel_armv8-6.12.36-aarch64-1.txz: Upgraded.
/boot/initrd/[load_kernel_modules.scr/platform/aarch64/rk3399]:
Correctly match the PinePhone Pro. Thanks to Brent Earl.
d/kernel-headers-6.12.36-aarch64-1.txz: Upgraded.
k/kernel-source-6.12.36-aarch64-1.txz: Upgraded.
installer/*: Rebuilt.
kernels/*: Upgraded.
patches/packages/httpd-2.4.64-x86_64-1_slack15.0.txz: Upgraded.
This release contains security fixes and improvements.
The update resolves a range of issues, including HTTP response splitting,
server-side request forgery (SSRF), and denial of service vulnerabilities.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.64
https://www.cve.org/CVERecord?id=CVE-2025-53020
https://www.cve.org/CVERecord?id=CVE-2025-49812
https://www.cve.org/CVERecord?id=CVE-2025-49630
https://www.cve.org/CVERecord?id=CVE-2025-23048
https://www.cve.org/CVERecord?id=CVE-2024-47252
https://www.cve.org/CVERecord?id=CVE-2024-43394
https://www.cve.org/CVERecord?id=CVE-2024-43204
https://www.cve.org/CVERecord?id=CVE-2024-42516
(* Security fix *)
patches/packages/kernel-firmware-20250708_99d64b4-noarch-1.txz: Upgraded.
patches/packages/linux-5.15.187/kernel-generic-5.15.187-x86_64-1.txz: Upgraded.
patches/packages/linux-5.15.187/kernel-headers-5.15.187-x86-1.txz: Upgraded.
patches/packages/linux-5.15.187/kernel-huge-5.15.187-x86_64-1.txz: Upgraded.
patches/packages/linux-5.15.187/kernel-modules-5.15.187-x86_64-1.txz: Upgraded.
patches/packages/linux-5.15.187/kernel-source-5.15.187-noarch-1.txz: Upgraded.
These updates fix various bugs and security issues.
Included is a mitigation for the AMD Transient Scheduler Attacks that have
been in the news lately.
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure lilo.conf points to the correct
kernel and initrd and run lilo as root to update the bootloader.
If you use elilo to boot your machine, you should run eliloconfig to copy the
kernel and initrd to the EFI System Partition.
For more information, see:
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html
https://www.cve.org/CVERecord?id=CVE-2024-36350
https://www.cve.org/CVERecord?id=CVE-2024-36357
https://www.cve.org/CVERecord?id=CVE-2024-36348
https://www.cve.org/CVERecord?id=CVE-2024-36349
(* Security fix *)
patches/packages/gnutls-3.8.10-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
libgnutls: Fix NULL pointer dereference when 2nd Client Hello omits PSK.
Reported by Stefan BÃŒhler
libgnutls: Fix heap read buffer overrun in parsing X.509 SCTS timestamps.
Spotted by oss-fuzz and reported by OpenAI Security Research Team,
and fix developed by Andrew Hamilton.
libgnutls: Fix double-free upon error when exporting otherName in SAN.
Reported by OpenAI Security Research Team.
certtool: Fix 1-byte write buffer overrun when parsing template.
Reported by David Aitel.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2025-6395
https://www.cve.org/CVERecord?id=CVE-2025-32989
https://www.cve.org/CVERecord?id=CVE-2025-32988
https://www.cve.org/CVERecord?id=CVE-2025-32990
(* Security fix *)
patches/packages/mozilla-thunderbird-140.0.1esr-x86_64-1_slack15.0.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.0.1esr/releasenotes/
extra/llvm-20.1.8-x86_64-1_slack15.0.txz: Upgraded.
patches/packages/ca-certificates-20250709-noarch-1_slack15.0.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
patches/packages/git-2.46.4-x86_64-1_slack15.0.txz: Upgraded.
This update fixes various security issues.
For more information, see:
https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/
https://www.cve.org/CVERecord?id=CVE-2025-27613
https://www.cve.org/CVERecord?id=CVE-2025-27614
https://www.cve.org/CVERecord?id=CVE-2025-46334
https://www.cve.org/CVERecord?id=CVE-2025-46835
https://www.cve.org/CVERecord?id=CVE-2025-48384
https://www.cve.org/CVERecord?id=CVE-2025-48385
https://www.cve.org/CVERecord?id=CVE-2025-48386
(* Security fix *)
patches/packages/xscreensaver-6.12-x86_64-1_slack15.0.txz: Upgraded.
Here's an upgrade to the latest xscreensaver.
patches/packages/ca-certificates-20250709-noarch-1_slack15.0.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
patches/packages/git-2.46.4-arm-1_slack15.0.txz: Upgraded.
This update fixes various security issues.
For more information, see:
https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/
https://www.cve.org/CVERecord?id=CVE-2025-27613
https://www.cve.org/CVERecord?id=CVE-2025-27614
https://www.cve.org/CVERecord?id=CVE-2025-46334
https://www.cve.org/CVERecord?id=CVE-2025-46835
https://www.cve.org/CVERecord?id=CVE-2025-48384
https://www.cve.org/CVERecord?id=CVE-2025-48385
https://www.cve.org/CVERecord?id=CVE-2025-48386
(* Security fix *)
patches/packages/xscreensaver-6.12-arm-1_slack15.0.txz: Upgraded.
Here's an upgrade to the latest xscreensaver.
extra/samba/samba-4.22.3-arm-1_slack15.0.txz: Upgraded.
This is the latest stable release of the Samba 4.22 release series.
Important Change in Upcoming Microsoft Update:
On 8th of July, Microsoft will release an important security update for
Active Directory Domain Controllers for Windows Server versions prior to
2025.
This update includes a change to the Microsoft RPC Netlogon protocol,
which improves security by tightening access checks for a set of RPC
requests. Samba running as domain members in these environments will be
impacted by this change if a specific configuration is used, see below
for which configuration is affected.
Windows Server version 2025 is already equipped with these specific
security hardenings, and Microsoft is now planning to deploy them to all
supported Windows Server versions down to Windows Server 2008.
Who is affected?
Samba installations acting as member servers in Windows AD domains will
be affected if they are configured to use the 'ad' idmapping backend.
Samba servers not using this configuration will not be affected by the
change at least to our current knowledge and understanding of the change
and no further action is required.
Current versions of Samba with the affected configuration will no longer
function correctly once the Microsoft update has been applied. Users
will not be able to connect to the SMB service provided by Samba for any
domain configured to use the 'ad' idmapping backend.
See https://bugzilla.samba.org/show_bug.cgi?id=15876.
patches/packages/sddm-0.19.0-arm-9_slack15.0.txz: Rebuilt.
Let's revert to the sddm that Slackware 15.0 shipped with.
patches/packages/sysvinit-3.01-arm-2_slack15.0.txz: Rebuilt.
This is a bugfix release:
Patched to set default HOME=/root to prevent dotfiles in /.
24/02/2022: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware
15/12/2015: Aggiornato HowTo automatizzare la compilazione del kernel
15/12/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
24/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
22/11/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
07/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
05/11/2015: Nuovo HowTo Automatizzare l'aggiornamento di Slackware current
30/10/2015: Aggiornato HowTo Automatizzare la prima configurazione di Slackware
26/05/2015: Aggiornato HowTo mini Slackware su pendrive
07/05/2015: Aggiornato HowTo automatizzare la compilazione del kernel
13/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
02/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
Questo script provvede ad aggiornare Slackware o Slackware64 all'ultima current in maniera del tutto autonoma, dalla ricerca di aggiornamenti all'aggiornamento del bootloader.
Scarica la lista dei pacchetti e la confronta con quelli installati, dopodiché controlla se i nuovi pacchetti sono presenti in un eventuale DVD già montato altrimenti li scarica da internet.
Lo script può gestire anche un sistema multilib, infatti se...
Uno script da eseguire al primo avvio di Slackware.
Mi capita spesso di fare nuove installazioni di Slackware e di ripetere sempre le stesse operazioni atte ad una prima configurazione di base, come ad esempio l'italianizzazione o l'impostazione della corretta risoluzione framebuffer.
Per cui ho deciso di raggruppare tutte queste operazioni di base, che possono...
Ecco che la bash ci viene in aiuto anche per realizzare un semplice sistema di video sorveglianza molto economico.
Questo script scatta una foto dalla webcam impostata nella variabile DEV con mplayer, ne fa una copia con la data corrente come nome del file per conservare una copia di tutte le foto scattate e per sapere a prima vista a quando risalgono. Dopodiché carica entrambe le copie della foto sul server ftp...
Spesso i produttori di hardware ottengono costi di produzione più bassi utilizzando componenti con capacità superiori in dispositivi non progettati per sfruttarle piuttosto che utilizzando componenti su misura, questo è anche il caso del mio mouse Logitech RX1000.
Aprendo il mouse e guardando le piste stampate sul retro della scheda si nota che il controller ha un pin inutilizzato, quindi leggendo il codice (CY7C63813) sul chip e trovandone il...
Compilare il kernel Linux non è certamente cosa difficile, ma chi è alle prime armi spesso è spaventato da questa procedura e anche per chi è pratico a volte diventa scocciante aggiornare ad ogni release.
Dunque ho scritto questo script bash che automatizza la procedura: rileva quanti core ha il proprio processore per decidere in quanti processi paralleli eseguire la compilazione in modo da ottimizzarne i tempi, poi controlla se la versione scelta...
Condividi sui tuoi social preferiti!
Telegram Facebook Linkedin Twitter Pinterest