Slackware64-current ChangeLog

ChangeLog for: 2018-03-29 21:48:28

a/bash-4.4.019-x86_64-2.txz:  Rebuilt.
  Fixed builtins.1 and rbash.1 manpages to work properly with strict
  implementations (such as mandoc). Thanks to orbea.
ap/cups-2.2.7-x86_64-1.txz:  Upgraded.
ap/mariadb-10.2.14-x86_64-1.txz:  Upgraded.
ap/nano-2.9.5-x86_64-1.txz:  Upgraded.
d/cmake-3.11.0-x86_64-1.txz:  Upgraded.
d/flex-2.6.4-x86_64-2.txz:  Rebuilt.
  Fix flex compiled with recent glibc. Thanks to nobodino.
d/python-pip-9.0.3-x86_64-1.txz:  Upgraded.
d/python3-3.6.5-x86_64-1.txz:  Upgraded.
  Refactored difflib and poplib to fix potential DoS vectors.
  Thanks to Jamie Davis for the patch.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1060
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1061
  (* Security fix *)
d/ruby-2.5.1-x86_64-1.txz:  Upgraded.
  This release includes some bug fixes and some security fixes:
  HTTP response splitting in WEBrick.
  Unintentional file and directory creation with directory traversal in
  tempfile and tmpdir.
  DoS by large request in WEBrick.
  Buffer under-read in String#unpack.
  Unintentional socket creation by poisoned NUL byte in UNIXServer
  and UNIXSocket.
  Unintentional directory traversal by poisoned NUL byte in Dir.
  Multiple vulnerabilities in RubyGems.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17742
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6914
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8777
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8778
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8779
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8780
  (* Security fix *)
d/subversion-1.9.7-x86_64-3.txz:  Rebuilt.
  Recompiled for ruby-2.5.1.
kde/korundum-4.14.3-x86_64-5.txz:  Rebuilt.
  Recompiled for ruby-2.5.1.
kde/qtruby-4.14.3-x86_64-7.txz:  Rebuilt.
  Recompiled for ruby-2.5.1.
l/apr-util-1.6.1-x86_64-4.txz:  Rebuilt.
  Merged upstream patch to fix httpd build.
n/dhcpcd-7.0.2-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.1-x86_64-1.txz:  Upgraded.
n/epic5-2.0.1-x86_64-3.txz:  Rebuilt.
  Recompiled for ruby-2.5.1.
x/mesa-18.0.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-terminal-0.8.7.3-x86_64-1.txz:  Upgraded.