ChangeLog for: 2025-12-09 23:13:59
a/elogind-255.22-x86_64-2.txz: Rebuilt.
Remove references to systemd tools from .conf files.
Thanks to Stuart Winter.
ap/alsa-utils-1.2.15-x86_64-1.txz: Upgraded.
ap/sysstat-12.7.9-x86_64-1.txz: Upgraded.
d/cmake-4.2.1-x86_64-1.txz: Upgraded.
d/meson-1.10.0-x86_64-1.txz: Upgraded.
d/strace-6.18-x86_64-1.txz: Upgraded.
d/swig-4.4.1-x86_64-1.txz: Upgraded.
kde/wcslib-8.5-x86_64-1.txz: Upgraded.
l/PyQt5_sip-12.17.2-x86_64-1.txz: Upgraded.
l/alsa-lib-1.2.15-x86_64-1.txz: Upgraded.
l/glib2-2.86.3-x86_64-1.txz: Upgraded.
l/gnu-efi-4.0.4-x86_64-1.txz: Upgraded.
l/graphviz-14.1.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.2_10-x86_64-1.txz: Upgraded.
l/mozjs140-140.6.0esr-x86_64-1.txz: Upgraded.
l/python-urllib3-2.6.1-x86_64-1.txz: Upgraded.
l/sip-6.15.0-x86_64-1.txz: Upgraded.
l/utf8proc-2.11.2-x86_64-1.txz: Upgraded.
n/c-ares-1.34.6-x86_64-1.txz: Upgraded.
A use-after-free bug has been uncovered in read_answers() that was
introduced in v1.32.3.
For more information, see:
https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5
https://www.cve.org/CVERecord?id=CVE-2025-62408
(* Security fix *)
n/socat-1.8.1.0-x86_64-1.txz: Upgraded.
x/libdrm-2.4.130-x86_64-1.txz: Upgraded.
x/libinput-1.30.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-140.6.0esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.6.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-94/
https://www.cve.org/CVERecord?id=CVE-2025-14321
https://www.cve.org/CVERecord?id=CVE-2025-14322
https://www.cve.org/CVERecord?id=CVE-2025-14323
https://www.cve.org/CVERecord?id=CVE-2025-14324
https://www.cve.org/CVERecord?id=CVE-2025-14325
https://www.cve.org/CVERecord?id=CVE-2025-14328
https://www.cve.org/CVERecord?id=CVE-2025-14329
https://www.cve.org/CVERecord?id=CVE-2025-14330
https://www.cve.org/CVERecord?id=CVE-2025-14331
https://www.cve.org/CVERecord?id=CVE-2025-14333
(* Security fix *)