ChangeLog for: 2025-02-18 23:03:20

a/kernel-firmware-20250218_b944ef7-noarch-1.txz:  Upgraded.
a/kernel-generic-6.12.15-x86_64-1.txz:  Upgraded.
a/xfsprogs-6.13.0-x86_64-1.txz:  Upgraded.
ap/vim-9.1.1120-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.12.15-x86-1.txz:  Upgraded.
d/tree-sitter-0.25.2-x86_64-1.txz:  Upgraded.
k/kernel-source-6.12.15-noarch-1.txz:  Upgraded.
l/orc-0.4.41-x86_64-1.txz:  Upgraded.
n/openssh-9.9p2-x86_64-1.txz:  Upgraded.
  This release fixes two security bugs:
  ssh(1) in OpenSSH versions 6.8p1 to 9.9p1 (inclusive) contained a logic error
  that allowed an on-path attacker (a.k.a MITM) to impersonate any server when
  the VerifyHostKeyDNS option is enabled. This option is off by default.
  sshd(8) in OpenSSH versions 9.5p1 to 9.9p1 (inclusive) is vulnerable to a
  memory/CPU denial-of-service related to the handling of SSH2_MSG_PING
  packets. This condition may be mitigated using the existing
  PerSourcePenalties feature.
  Both vulnerabilities were discovered and demonstrated to be exploitable
  by the Qualys Security Advisory team. We thank them for their detailed
  review of OpenSSH.
  For more information, see:
    https://www.openssh.com/txt/release-9.9p2
    https://www.cve.org/CVERecord?id=CVE-2025-26465
    https://www.cve.org/CVERecord?id=CVE-2025-26466
  (* Security fix *)
n/postfix-3.10.0-x86_64-1.txz:  Upgraded.
n/samba-4.21.4-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-128.7.1esr-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/128.7.1esr/releasenotes/
xap/vim-gvim-9.1.1120-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.