blender-3.0.1-x86_64-1_ap.txz: Upgraded.
d/AMF-headers-1.5.2-noarch-1.txz: Upgraded.
d/llvm-22.1.5-x86_64-1.txz: Upgraded.
kde/okteta-0.26.27-x86_64-1.txz: Upgraded.
l/djvulibre-3.5.30-x86_64-1.txz: Upgraded.
l/lcms2-2.19.1-x86_64-1.txz: Upgraded.
l/libclc-22.1.5-x86_64-1.txz: Upgraded.
x/mesa-26.1.0-x86_64-1.txz: Upgraded.
y/nethack-5.0.0-x86_64-3.txz: Rebuilt.
Fixed some paths / perms.
Thanks to zapwai.
a/hwdata-0.407-noarch-1.txz: Upgraded.
a/pam-1.7.2-x86_64-2.txz: Rebuilt.
Harden perms on /sbin/unix_chkpwd.
ap/sqlite-3.53.1-x86_64-1.txz: Upgraded.
l/ffmpeg-7.1.4-x86_64-1.txz: Upgraded.
l/hunspell-1.7.3-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
l/libgtop-2.41.3-x86_64-3.txz: Rebuilt.
Harden perms on /usr/lib${LIBDIRSUFFIX}/libgtop/libgtop_server2.
n/procmail-3.24-x86_64-3.txz: Rebuilt.
Harden perms on /usr/sbin/procmail.
testing/packages/ffmpeg-8.1.1-x86_64-1.txz: Upgraded.
y/nethack-5.0.0-x86_64-2.txz: Rebuilt.
Fixed HACKDIR location.
a/hwdata-0.407-aarch64-1.txz: Upgraded.
a/pam-1.7.2-aarch64-2.txz: Rebuilt.
Harden perms on /sbin/unix_chkpwd.
ap/sqlite-3.53.1-aarch64-1.txz: Upgraded.
l/ffmpeg-7.1.4-aarch64-1.txz: Upgraded.
l/hunspell-1.7.3-aarch64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
n/procmail-3.24-aarch64-4.txz: Rebuilt.
Harden perms on /usr/sbin/procmail.
a/util-linux-2.42-aarch64-2.txz: Rebuilt.
Harden perms on /bin/mount and /bin/umount.
ap/lxc-7.0.0-aarch64-2.txz: Rebuilt.
Harden perms on /usr/libexec/lxc/lxc-user-nic.
d/ccache-4.13.6-aarch64-1.txz: Upgraded.
d/python-pip-26.1.1-aarch64-1.txz: Upgraded.
l/fuse-2.9.9-aarch64-6.txz: Rebuilt.
Harden perms on /bin/fusermount.
l/fuse3-3.16.2-aarch64-2.txz: Rebuilt.
Harden perms on /usr/bin/fusermount3.
l/libgtop-2.41.3-aarch64-2.txz: Rebuilt.
Harden perms on /usr/lib64/libgtop/libgtop_server2.
l/polkit-127-aarch64-2.txz: Rebuilt.
n/httpd-2.4.67-aarch64-1.txz: Upgraded.
This release fixes bugs and the following security issues:
mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data().
mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check.
Off-by-one OOB reads in AJP getter functions.
HTTP response splitting forwarding malicious status line.
mod_authn_socache crash.
mod_auth_digest timing attack.
mod_md unrestricted OCSP response.
buffer overflow in mod_proxy_ajp via ajp_msg_check_header().
mod_rewrite elevation of privileges via ap_expr.
http2: double free and possible RCE on early reset.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.67
https://www.cve.org/CVERecord?id=CVE-2026-34059
https://www.cve.org/CVERecord?id=CVE-2026-34032
https://www.cve.org/CVERecord?id=CVE-2026-33857
https://www.cve.org/CVERecord?id=CVE-2026-33523
https://www.cve.org/CVERecord?id=CVE-2026-33007
https://www.cve.org/CVERecord?id=CVE-2026-33006
https://www.cve.org/CVERecord?id=CVE-2026-29169
https://www.cve.org/CVERecord?id=CVE-2026-29168
https://www.cve.org/CVERecord?id=CVE-2026-28780
https://www.cve.org/CVERecord?id=CVE-2026-24072
https://www.cve.org/CVERecord?id=CVE-2026-23918
(* Security fix *)
n/krb5-1.22.2-aarch64-2.txz: Rebuilt.
Harden perms on /usr/bin/ksu.
x/xorg-server-21.1.22-aarch64-3.txz: Rebuilt.
Harden perms on /usr/libexec/Xorg.wrap.
x/xorg-server-xephyr-21.1.22-aarch64-3.txz: Rebuilt.
x/xorg-server-xnest-21.1.22-aarch64-3.txz: Rebuilt.
x/xorg-server-xvfb-21.1.22-aarch64-3.txz: Rebuilt.
xap/xscreensaver-6.15-aarch64-2.txz: Rebuilt.
Harden perms on /usr/libexec/xscreensaver/sonar and
/usr/libexec/xscreensaver/xscreensaver-auth.
y/nethack-5.0.0-aarch64-1.txz: Upgraded.
Thanks to zapwai.
a/bcachefs-tools-1.38.2-aarch64-1.txz: Upgraded.
l/gexiv2-0.16.0-aarch64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to saxa.
xap/gimp-3.2.4-aarch64-2.txz: Rebuilt.
Patched to build with gexiv2-0.16.0.
Thanks to USUARIONUEVO.
patches/packages/hunspell-1.7.3-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
patches/packages/httpd-2.4.67-x86_64-1_slack15.0.txz: Upgraded.
This release fixes bugs and the following security issues:
mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data().
mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check.
Off-by-one OOB reads in AJP getter functions.
HTTP response splitting forwarding malicious status line.
mod_authn_socache crash.
mod_auth_digest timing attack.
mod_md unrestricted OCSP response.
buffer overflow in mod_proxy_ajp via ajp_msg_check_header().
mod_rewrite elevation of privileges via ap_expr.
http2: double free and possible RCE on early reset.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.67
https://www.cve.org/CVERecord?id=CVE-2026-34059
https://www.cve.org/CVERecord?id=CVE-2026-34032
https://www.cve.org/CVERecord?id=CVE-2026-33857
https://www.cve.org/CVERecord?id=CVE-2026-33523
https://www.cve.org/CVERecord?id=CVE-2026-33007
https://www.cve.org/CVERecord?id=CVE-2026-33006
https://www.cve.org/CVERecord?id=CVE-2026-29169
https://www.cve.org/CVERecord?id=CVE-2026-29168
https://www.cve.org/CVERecord?id=CVE-2026-28780
https://www.cve.org/CVERecord?id=CVE-2026-24072
https://www.cve.org/CVERecord?id=CVE-2026-23918
(* Security fix *)
patches/packages/gnutls-3.8.13-x86_64-1_slack15.0.txz: Upgraded.
This update fixes a security issue:
Add more checks to DTLS reassembly. Previously, gnutls didn't check that
DTLS fragments claimed a consistent message_length value. Additionally,
a crucial array size check was missing, enabling an attacker to cause a
heap overwrite. Reject fragments with mismatching length and add a missing
boundary check. Independently reported by Haruto Kimura (Stella), Oscar
Reparaz and Zou Dikai.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-33846
(* Security fix *)
patches/packages/linux-5.15.204/kernel-generic-5.15.204-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
An out-of-bounds write in the userspace interface for AEAD cipher algorithms
may be leveraged to get a root shell through a setuid binary. While the
proof of concepts for this have so far targeted different program versions
than Slackware uses, there's nothing preventing anyone from targeting one
a setuid binary that we use.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away, since we use CONFIG_CRYPTO_USER_API_AEAD=m you may blacklist or remove
the algif_aead.ko kernel module to prevent the exploit.
For more information, see:
https://copy.fail/
https://www.cve.org/CVERecord?id=CVE-2026-31431
(* Security fix *)
patches/packages/linux-5.15.204/kernel-headers-5.15.204-x86-1.txz: Upgraded.
patches/packages/linux-5.15.204/kernel-huge-5.15.204-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
An out-of-bounds write in the userspace interface for AEAD cipher algorithms
may be leveraged to get a root shell through a setuid binary. While the
proof of concepts for this have so far targeted different program versions
than Slackware uses, there's nothing preventing anyone from targeting one
a setuid binary that we use.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away, since we use CONFIG_CRYPTO_USER_API_AEAD=m you may blacklist or remove
the algif_aead.ko kernel module to prevent the exploit.
For more information, see:
https://copy.fail/
https://www.cve.org/CVERecord?id=CVE-2026-31431
(* Security fix *)
patches/packages/linux-5.15.204/kernel-modules-5.15.204-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
An out-of-bounds write in the userspace interface for AEAD cipher algorithms
may be leveraged to get a root shell through a setuid binary. While the
proof of concepts for this have so far targeted different program versions
than Slackware uses, there's nothing preventing anyone from targeting one
a setuid binary that we use.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away, since we use CONFIG_CRYPTO_USER_API_AEAD=m you may blacklist or remove
the algif_aead.ko kernel module to prevent the exploit.
For more information, see:
https://copy.fail/
https://www.cve.org/CVERecord?id=CVE-2026-31431
(* Security fix *)
patches/packages/linux-5.15.204/kernel-source-5.15.204-noarch-1.txz: Upgraded.
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure lilo.conf points to the correct
kernel and initrd and run lilo as root to update the bootloader.
If you use elilo to boot your machine, you should run eliloconfig to copy the
kernel and initrd to the EFI System Partition.
patches/packages/mozilla-thunderbird-140.10.1esr-x86_64-1_slack15.0.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.10.1esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2026-39/
https://www.cve.org/CVERecord?id=CVE-2026-7320
https://www.cve.org/CVERecord?id=CVE-2026-7321
https://www.cve.org/CVERecord?id=CVE-2026-7322
https://www.cve.org/CVERecord?id=CVE-2026-7323
(* Security fix *)
patches/packages/hunspell-1.7.3-arm-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
patches/packages/httpd-2.4.67-arm-1_slack15.0.txz: Upgraded.
This release fixes bugs and the following security issues:
mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data().
mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check.
Off-by-one OOB reads in AJP getter functions.
HTTP response splitting forwarding malicious status line.
mod_authn_socache crash.
mod_auth_digest timing attack.
mod_md unrestricted OCSP response.
buffer overflow in mod_proxy_ajp via ajp_msg_check_header().
mod_rewrite elevation of privileges via ap_expr.
http2: double free and possible RCE on early reset.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.67
https://www.cve.org/CVERecord?id=CVE-2026-34059
https://www.cve.org/CVERecord?id=CVE-2026-34032
https://www.cve.org/CVERecord?id=CVE-2026-33857
https://www.cve.org/CVERecord?id=CVE-2026-33523
https://www.cve.org/CVERecord?id=CVE-2026-33007
https://www.cve.org/CVERecord?id=CVE-2026-33006
https://www.cve.org/CVERecord?id=CVE-2026-29169
https://www.cve.org/CVERecord?id=CVE-2026-29168
https://www.cve.org/CVERecord?id=CVE-2026-28780
https://www.cve.org/CVERecord?id=CVE-2026-24072
https://www.cve.org/CVERecord?id=CVE-2026-23918
(* Security fix *)
patches/packages/gnutls-3.8.13-arm-1_slack15.0.txz: Upgraded.
This update fixes a security issue:
Add more checks to DTLS reassembly. Previously, gnutls didn't check that
DTLS fragments claimed a consistent message_length value. Additionally,
a crucial array size check was missing, enabling an attacker to cause a
heap overwrite. Reject fragments with mismatching length and add a missing
boundary check. Independently reported by Haruto Kimura (Stella), Oscar
Reparaz and Zou Dikai.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2026-33846
(* Security fix *)
patches/packages/linux-5.15.204/*: Upgraded.
This update fixes a critical security issue:
An out-of-bounds write in the userspace interface for AEAD cipher algorithms
may be leveraged to get a root shell through a setuid binary. While the
proof of concepts for this have so far targeted different program versions
than Slackware uses, there's nothing preventing anyone from targeting one
a setuid binary that we use.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away, since we use CONFIG_CRYPTO_USER_API_AEAD=m you may blacklist or remove
the algif_aead.ko kernel module to prevent the exploit.
For more information, see:
https://copy.fail/
https://www.cve.org/CVERecord?id=CVE-2026-31431
(* Security fix *)
24/02/2022: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware
15/12/2015: Aggiornato HowTo automatizzare la compilazione del kernel
15/12/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
24/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
22/11/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
07/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
05/11/2015: Nuovo HowTo Automatizzare l'aggiornamento di Slackware current
30/10/2015: Aggiornato HowTo Automatizzare la prima configurazione di Slackware
26/05/2015: Aggiornato HowTo mini Slackware su pendrive
07/05/2015: Aggiornato HowTo automatizzare la compilazione del kernel
13/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
02/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
Vi presento uno script bash che crea una mini Slackware su pendrive in automatico.
Questo esempio fa riferimento a Slackware 14.0 a 32bit ma può essere facilmente adattato a qualsiasi altra versione.
Cerca i pacchetti elencati nell'array se sono già presenti nella directory impostata, se non li trova e se c'è il dvd di Slackware montato li copia da esso, altrimenti li scarica da internet.
⇦ Ho aggiunto una nuova pagina a questo sito che raccoglie le mie app.
Possono essere tutte scaricate dal Play Store di Google.
Un piccolo script in bash che sfrutta kdialog come semplice interfaccia.
Nella sezione download è possibile scaricare anche il pacchetto di installazione per slackware.
Ho 100MiB in più e aggiungo qualcosa al repository ;-)
Ho trovato questo pensiero di Dusty Wilson in inglese su Google+ e lo riporto in parte qui tradotto perché secondo me il motivo di fondo che lo ha spinto a scrivere ciò, è quello che si vede nell'immagine ed è la stessa cosa che ho pensato io quando è morto Dennis Ritchie:
Dennis Ritchie ha co-inventato C che è la base di praticamente tutto ciò che riguarda i computer. Ha co-inventato UNIX che è alla base di tutto nei computer tranne che di Windows (anche se Windows è stato molto, molto molto influenzato da esso). Apple OS X è una piattaforma basata su UNIX. Ma molta gente pensa che Steve Jobs ha fatto tutto da solo e che dovrebbe essere lodato come un salvatore. Non solo ha preso "in prestito" idee, progetti e funzionalità da tutti gli altri, ha piagnucolato se qualcuno abbia mai fatto lo stesso. Nel 1996 ha detto: "Noi siamo sempre stati senza vergogna di rubare grandi idee." Nel 2005 ha detto: "Sono senza vergogna quelli che ci copiano". Quest'anno ha detto "Vado a distruggere Android, perché è un prodotto rubato. Sono disposto ad andare in questa guerra termonucleare" e poi, quasi subito dopo ha rilasciato iOS 5 con una tonnellata di caratteristiche già introdotte in Android. Il ragazzo è/era uno stronzo. Non ho pazienza per un ipocrita come lui.
Condividi sui tuoi social preferiti!
Telegram Facebook Linkedin Twitter Pinterest