Mon Oct 13 13:58:21 CDT 2008 patches/packages/glibc-zoneinfo-2.5-noarch-8_slack12.0.tgz: Upgraded to tzdata2008h for the latest world timezone changes. +--------------------------+ Fri Sep 26 22:38:32 CDT 2008 patches/packages/mozilla-thunderbird-2.0.0.17-i686-1.tgz: Upgraded to thunderbird-2.0.0.17. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/thunderbird20.html (* Security fix *) +--------------------------+ Thu Sep 25 23:24:07 CDT 2008 patches/packages/mozilla-firefox-2.0.0.17-i686-1.tgz: Upgraded to firefox-2.0.0.17. This release fixes some more security vulnerabilities. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/firefox20.html (* Security fix *) patches/packages/seamonkey-1.1.12-i486-1_slack12.0.tgz: This release fixes some more security vulnerabilities. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html (* Security fix *) +--------------------------+ Wed Sep 17 02:28:20 CDT 2008 patches/packages/bind-9.4.2_P2-i486-1_slack12.0.tgz: Upgraded to bind-9.4.2-P2. This version has performance gains over bind-9.4.2-P1. +--------------------------+ Mon Sep 1 21:56:29 CDT 2008 patches/packages/samba-3.0.32-i486-1_slack12.0.tgz: Upgraded to samba-3.0.32. This is a bugfix release. See the WHATSNEW.txt file in the Samba docs for details on what has changed. +--------------------------+ Thu Aug 28 22:48:16 CDT 2008 patches/packages/amarok-1.4.10-i486-1_slack12.0.tgz: Upgraded to amarok-1.4.10. This fixes a security issue in the Magnatune online music library support which could be used by malicious local users to overwrite system files. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3699 (* Security fix *) patches/packages/libgpod-0.6.0-i486-1_slack12.0.tgz: Upgraded to libgpod-0.6.0. This new version of libgpod is required for amarok-1.4.10. +--------------------------+ Mon Aug 4 14:03:01 CDT 2008 patches/packages/pan-0.133-i486-1_slack12.0.tgz: Upgraded to pan-0.133. This update fixes a buffer overflow in pan-0.128 through pan-0.132 when processing .nzb files. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2363 (* Security fix *) patches/packages/python-2.5.2-i486-1_slack12.0.tgz: Patched various overflows and other security problems. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1679 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1721 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2315 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2316 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3142 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3144 (* Security fix *) +--------------------------+ Tue Jul 29 13:32:21 CDT 2008 patches/packages/proftpd-1.3.1-i486-1_slack12.0.tgz: Recompiled against new OpenSSL, since this evidently checks the OpenSSL version and will only run against the libraries it was compiled against. A small patch was also added due to changes in the system includes. Thanks to Martin Schmitz for the info and a pointer to the patch. +--------------------------+ Mon Jul 28 22:05:06 CDT 2008 patches/packages/fetchmail-6.3.8-i486-3_slack12.0.tgz: Patched to fix a possible denial of service when "-v -v" options are used. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2711 (* Security fix *) patches/packages/httpd-2.2.9-i486-1_slack12.0.tgz: Upgraded to httpd-2.2.9. This release fixes flaws which could allow XSS attacks. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5000 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6388 (* Security fix *) patches/packages/libxslt-1.1.24-i486-1_slack12.0.tgz: Upgraded to libxslt-1.1.24. A buffer overflow when processing XSL stylesheets could result in the execution of arbitrary code. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1767 (* Security fix *) patches/packages/links-2.1-i486-1_slack12.0.tgz: Upgraded to links-2.1. Unspecified vulnerability in Links before 2.1, when "only proxies" is enabled, has unknown impact and attack vectors related to providing "URLs to external programs." For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3329 (* Security fix *) patches/packages/mozilla-thunderbird-2.0.0.16-i686-1.tgz: Upgraded to thunderbird-2.0.0.16. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/thunderbird20.html (* Security fix *) patches/packages/mtr-0.73-i486-1_slack12.0.tgz: Upgraded to mtr-0.73. This fixes a minor security bug where a very long hostname in the trace path could lead to an overflow (and most likely just a crash). (* Security fix *) patches/packages/net-snmp-5.4.1.2-i486-1_slack12.0.tgz: Upgraded to net-snmp-5.4.1.2. A vulnerability was discovered where an attacked could spoof an authenticated SNMPv3 packet due to incorrect HMAC checking. Also, a buffer overflow was found that could be exploited if an application using the net-snmp perl modules connects to a malicious server. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0960 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2292 (* Security fix *) patches/packages/openssh-5.1p1-i486-1_slack12.0.tgz: Upgraded to openssh-5.1p1. When upgrading OpenSSH, it is VERY IMPORTANT to also upgrade OpenSSL, or it is possible to be unable to log back into sshd! patches/packages/openssl-0.9.8h-i486-1_slack12.0.tgz: Upgraded to OpenSSL 0.9.8h. The Codenomicon TLS test suite uncovered security bugs in OpenSSL. If OpenSSL was compiled using non-default options (Slackware's package is not), then a malicious packet could cause a crash. Also, a malformed TLS handshake could also lead to a crash. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0891 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1672 When upgrading OpenSSL, it is VERY IMPORTANT to also upgrade OpenSSH, or it is possible to be unable to log back into sshd! (* Security fix *) patches/packages/openssl-solibs-0.9.8h-i486-1_slack12.0.tgz: Upgraded to OpenSSL 0.9.8h shared libraries (see above). (* Security fix *) patches/packages/pcre-7.7-i486-1_slack12.0.tgz: Upgraded to pcre-7.7. Tavis Ormandy of the Google Security Team found a buffer overflow triggered when handling certain regular expressions. This could lead to a crash or possible execution of code as the user of the PCRE-linked application. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2371 (* Security fix *) patches/packages/vim-7.1.330-i486-1_slack12.0.tgz: Upgraded to vim-7.1.330. This fixes several security issues related to the automatic processing of untrusted files. For more information, see: http://www.rdancer.org/vulnerablevim.html (* Security fix *) patches/packages/vim-gvim-7.1.330-i486-1_slack12.0.tgz: Upgraded to vim-gvim-7.1.330. See "vim" above for details. (* Security fix *) +--------------------------+ Wed Jul 23 16:27:21 CDT 2008 patches/packages/dnsmasq-2.45-i486-1_slack12.0.tgz: Upgraded to dnsmasq-2.45. It was discovered that earlier versions of dnsmasq have DNS cache weaknesses that are similar to the ones recently discovered in BIND. This new release minimizes the risk of cache poisoning. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 (* Security fix *) +--------------------------+ Wed Jul 16 19:28:41 CDT 2008 patches/packages/mozilla-firefox-2.0.0.16-i686-1.tgz: Upgraded to firefox-2.0.0.16. This release fixes some more security vulnerabilities. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/firefox20.html (* Security fix *) patches/packages/seamonkey-1.1.11-i486-1_slack12.0.tgz: Upgraded to seamonkey-1.1.11. This release fixes some more security vulnerabilities. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html (* Security fix *) +--------------------------+ Fri Jul 11 14:19:19 CDT 2008 patches/packages/pidgin-2.4.3-i486-1_slack12.0.tgz: Upgraded to pidgin-2.4.3. This updates pidgin to work with the changed ICQ protocol. +--------------------------+ Wed Jul 9 20:03:57 CDT 2008 patches/packages/bind-9.4.2_P1-i486-1_slack12.0.tgz: Upgraded to bind-9.4.2-P1. This upgrade addresses a security flaw known as the CERT VU#800113 DNS Cache Poisoning Issue. This is the summary of the problem from the BIND site: "A weakness in the DNS protocol may enable the poisoning of caching recurive resolvers with spoofed data. DNSSEC is the only full solution. New versions of BIND provide increased resilience to the attack." It is suggested that sites that run BIND upgrade to one of the new packages in order to reduce their exposure to DNS cache poisoning attacks. For more information, see: http://www.isc.org/sw/bind/bind-security.php http://www.kb.cert.org/vuls/id/800113 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 (* Security fix *) patches/packages/mozilla-firefox-2.0.0.15-i686-1.tgz: Upgraded to firefox-2.0.0.15. This release closes several possible security vulnerabilities and bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) patches/packages/seamonkey-1.1.10-i486-1_slack12.0.tgz: Upgraded to seamonkey-1.1.10. This release closes several possible security vulnerabilities and bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) +--------------------------+ Sat Jun 28 16:52:32 CDT 2008 patches/packages/gnutls-1.6.3-i486-1_slack12.0.tgz: Upgraded to GnuTLS version 1.6.3 (with additional security patches). This updated package fixes bugs which can lead to a denial of service (DoS) in programs linked with GnuTLS. Thanks to Ossi Herrala and Jukka Taimisto from the CROSS project at Codenomicon Ltd. for finding and reporting the problems, and to Simon Josefsson and Nikos Mavrogiannopoulos for researching the issues and developing patches, and to Andreas Metzler for noting and reporting a problem with one of the original patches. For more information about the issues patched, please refer to: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1948 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1949 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1950 (* Security fix *) +--------------------------+ Fri Jun 27 23:17:20 CDT 2008 patches/packages/ruby-1.8.6_p230-i486-1_slack12.0.tgz: Upgraded to ruby-1.8.6-p230. This fixes a number of security related bugs in Ruby which could lead to a denial of service (DoS) condition or allow execution of arbitrary code. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2662 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2663 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2664 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2725 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2726 (* Security fix *) +--------------------------+ Wed May 28 19:46:22 CDT 2008 patches/packages/samba-3.0.30-i486-1_slack12.0.tgz: Upgraded to samba-3.0.30. This is a security release in order to address CVE-2008-1105 ("Boundary failure when parsing SMB responses can result in a buffer overrun"). For more information on the security issue, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105 (* Security fix *) +--------------------------+ Tue May 27 21:53:32 CDT 2008 patches/packages/rdesktop-1.6.0-i486-1_slack12.0.tgz: Upgraded to rdesktop-1.6.0. According to the rdesktop ChangeLog, this contains a: "* Fix for potential vulnerability against compromised/malicious servers (reported by iDefense)" For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1801 (* Security fix *) +--------------------------+ Wed May 7 16:10:04 CDT 2008 patches/packages/mozilla-thunderbird-2.0.0.14-i686-1.tgz: Upgraded to thunderbird-2.0.0.14. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird (* Security fix *) patches/packages/php-5.2.6-i486-1_slack12.0.tgz: Upgraded to php-5.2.6. This version of PHP contains many fixes and enhancements. Some of the fixes are security related, and the PHP release announcement provides this list: * Fixed possible stack buffer overflow in the FastCGI SAPI identified by Andrei Nigmatulin. * Fixed integer overflow in printf() identified by Maksymilian Aciemowicz. * Fixed security issue detailed in CVE-2008-0599 identified by Ryan Permeh. * Fixed a safe_mode bypass in cURL identified by Maksymilian Arciemowicz. * Properly address incomplete multibyte chars inside escapeshellcmd() identified by Stefan Esser. * Upgraded bundled PCRE to version 7.6 When last checked, CVE-2008-0599 was not yet open. However, additional information should become available at this URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0599 The list reproduced above, as well as additional information about other fixes in PHP 5.2.6 may be found in the PHP release announcement here: http://www.php.net/releases/5_2_6.php (* Security fix *) +--------------------------+ Mon Apr 28 23:46:17 CDT 2008 patches/packages/libpng-1.2.27-i486-1_slack12.0.tgz: Upgraded to libpng-1.2.27. This fixes various bugs, the most important of which have to do with the handling of unknown chunks containing zero-length data. Processing a PNG image that contains these could cause the application using libpng to crash (possibly resulting in a denial of service), could potentially expose the contents of uninitialized memory, or could cause the execution of arbitrary code as the user running libpng (though it would probably be quite difficult to cause the execution of attacker-chosen code). We recommend upgrading the package as soon as possible. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1382 ftp://ftp.simplesystems.org/pub/libpng/png/src/libpng-1.2.27-README.txt (* Security fix *) +--------------------------+ Fri Apr 25 23:07:56 CDT 2008 patches/packages/kdelibs-3.5.7-i486-4_slack12.0.tgz: Patched to fix a security problem. From the KDE advisory: "If start_kdeinit is installed as setuid root, a local user might be able to send unix signals to other processes, cause a denial of service or even possibly execute arbitrary code." This issue affects KDE 3.5.5 through KDE 3.5.9. We recommend upgrading to the new kdelibs package as soon as possible. For more information, see: http://www.kde.org/info/security/advisory-20080426-2.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1671 (* Security fix *) +--------------------------+ Sat Apr 19 23:49:25 CDT 2008 patches/packages/xine-lib-1.1.11.1-i686-3_slack12.0.tgz: Recompiled, with --without-speex (we didn't ship the speex library in Slackware anyway, but for reference this issue would be CVE-2008-1686), and with --disable-nosefart (the recently reported as insecurely demuxed NSF format). As before in -2, this package fixes the two regressions mentioned in the release notes for xine-lib-1.1.12: http://sourceforge.net/project/shownotes.php?release_id=592185&group_id=9655 (* Security fix *) +--------------------------+ Thu Apr 17 16:25:55 CDT 2008 patches/packages/mozilla-firefox-2.0.0.14-i686-1.tgz: Upgraded to firefox-2.0.0.14. This upgrade fixes a potential security bug. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) +--------------------------+ Tue Apr 8 00:17:36 CDT 2008 patches/packages/xine-lib-1.1.11.1-i686-2_slack12.0.tgz: Patched to fix playback failure affecting several media formats accidentally broken in the xine-lib-1.1.11.1 release. Thanks to Diogo Sousa for pointing me to the new release notes on xinehq.de. +--------------------------+ Mon Apr 7 02:04:58 CDT 2008 patches/packages/bzip2-1.0.5-i486-1_slack12.0.tgz: Upgraded to bzip2-1.0.5. Previous versions of bzip2 contained a buffer overread error that could cause applications linked to libbz2 to crash, resulting in a denial of service. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1372 (* Security fix *) patches/packages/m4-1.4.11-i486-1_slack12.0.tgz: Upgraded to m4-1.4.11. In addition to bugfixes and enhancements, this version of m4 also fixes two issues with possible security implications. A minor security fix with the use of "maketemp" and "mkstemp" -- these are now quoted to prevent the (rather unlikely) possibility that an unquoted string could match an existing macro causing operations to be done on the wrong file. Also, a problem with the '-F' option (introduced with version 1.4) could cause a core dump or possibly (with certain file names) the execution of arbitrary code. For more information on these issues, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1687 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1688 (* Security fix *) +--------------------------+ Fri Apr 4 12:36:37 CDT 2008 patches/packages/openssh-5.0p1-i486-1_slack12.0.tgz: Upgraded to openssh-5.0p1. This version fixes a security issue where local users could hijack forwarded X connections. Upgrading to the new package is highly recommended. For more information on this security issue, please see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483 (* Security fix *) +--------------------------+ Thu Apr 3 01:15:53 CDT 2008 patches/packages/cups-1.3.7-i486-1_slack12.0.tgz: Upgraded to cups-1.3.7. This version of CUPS fixes some buffer overflows in the GIF image filter and in cgiCompileSearch. Those running CUPS servers should upgrade. For more information on these security issues, please see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0047 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1373 (* Security fix *) +--------------------------+ Mon Mar 31 23:33:58 CDT 2008 patches/packages/xine-lib-1.1.11.1-i686-1_slack12.0.tgz: Upgraded to xine-lib-1.1.11.1. Earlier versions of xine-lib suffer from an integer overflow which may lead to a buffer overflow that could potentially be used to gain unauthorized access to the machine if a malicious media file is played back. File types affected this time include .flv, .mov, .rm, .mve, .mkv, and .cak. For more information on this security issue, please see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1482 (* Security fix *) +--------------------------+ Sat Mar 29 03:09:17 CDT 2008 patches/packages/mozilla-firefox-2.0.0.13-i686-1.tgz: Upgraded to firefox-2.0.0.13. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) patches/packages/seamonkey-1.1.9-i486-1_slack12.0.tgz: Upgraded to seamonkey-1.1.9. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) patches/packages/xine-lib-1.1.11-i686-1_slack12.0.tgz: Earlier versions of xine-lib suffer from an array index bug that may have security implications if a malicious RTSP stream is played. Playback of other media formats is not affected. If you use RTSP, you should probably upgrade xine-lib. For more information on the security issue, please see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0073 (* Security fix *) +--------------------------+ Sun Mar 2 00:15:53 CST 2008 patches/packages/espgs-8.15.4-i486-3_slack12.0.tgz: This patched version of ESP Ghostscript fixes a buffer overflow. For more information on the security issue, please see: http://scary.beasts.org/security/CESA-2008-001.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0411 Thanks to Chris Evans and Will Drewry of Google Security for their work on discovering and demonstrating the overflow. (* Security fix *) +--------------------------+ Sat Mar 1 15:55:28 CST 2008 patches/packages/mozilla-thunderbird-2.0.0.12-i686-1.tgz: Upgraded to thunderbird-2.0.0.12. This update fixes the following security related issues: MFSA 2008-12: Heap buffer overflow in external MIME bodies MFSA 2008-05: Directory traversal via chrome: URI MFSA 2008-03: Privilege escalation, XSS, Remote Code Execution MFSA 2008-01: Crashes with evidence of memory corruption (rv:1.8.1.12) For more information, see: http://www.mozilla.org/security/announce/2008/mfsa2008-12.html http://www.mozilla.org/security/announce/2008/mfsa2008-05.html http://www.mozilla.org/security/announce/2008/mfsa2008-03.html http://www.mozilla.org/security/announce/2008/mfsa2008-01.html These are the related CVE entries: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0304 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0418 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0415 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0412 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0413 (* Security fix *) +--------------------------+ Thu Feb 14 16:39:00 CST 2008 patches/packages/httpd-2.2.8-i486-1.tgz: Upgraded to httpd-2.2.8. This fixes security and other bugs. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6421 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6422 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6388 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5000 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0005 (* Security fix *) +--------------------------+ Tue Feb 12 23:07:34 CST 2008 patches/packages/mozilla-firefox-2.0.0.12-i686-1.tgz: Upgraded to firefox-2.0.0.12. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) patches/packages/seamonkey-1.1.8-i486-1_slack12.0.tgz: Upgraded to seamonkey-1.1.8. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) +--------------------------+ Mon Feb 11 17:46:22 CST 2008 patches/packages/kernel-generic-2.6.21.5-i486-2_slack12.0.tgz: All of these kernel upgrades fix yesterday's local root exploit. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0010 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0163 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0600 (* Security fix *) patches/packages/kernel-generic-smp-2.6.21.5_smp-i686-2_slack12.0.tgz: (* Security fix *) patches/packages/kernel-huge-2.6.21.5-i486-2_slack12.0.tgz: (* Security fix *) patches/packages/kernel-huge-smp-2.6.21.5_smp-i686-2_slack12.0.tgz: (* Security fix *) If you use lilo, don't forget to run it again after the upgrade. +--------------------------+ Mon Dec 31 18:49:52 CST 2007 patches/packages/glibc-zoneinfo-2.5-noarch-7_slack12.0.tgz: Some deja vu. ;-) Upgraded to tzdata2007k. A new year should be started with the latest timezone data, so here it is. Happy holidays, and a happy new year to all! :-) +--------------------------+ Mon Dec 24 15:54:26 CST 2007 patches/packages/glibc-zoneinfo-2.5-noarch-6_slack12.0.tgz: Upgraded to tzdata2007j. A new year should be started with the latest timezone data, so here it is. Happy holidays, and a happy new year to all! :-) +--------------------------+ Fri Dec 14 18:03:59 CST 2007 patches/packages/mysql-5.0.51-i486-1_slack12.0.tgz: Upgraded to mysql-5.0.51. This release fixes several bugs, including some security issues. However, it also includes a potentially incompatible change, so be sure to read the release notes before upgrading. It is possible that some databases will need to be fixed in order to work with this (and future) releases: http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html For more information about the security issues fixed, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3781 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5925 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5969 (* Security fix *) +--------------------------+ Mon Dec 10 12:45:35 CST 2007 patches/packages/samba-3.0.28-i486-1_slack12.0.tgz: Upgraded to samba-3.0.28. Samba 3.0.28 is a security release in order to address a boundary failure in GETDC mailslot processing that can result in a buffer overrun leading to possible code execution. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6015 http://www.samba.org/samba/history/samba-3.0.28.html http://secunia.com/secunia_research/2007-99/advisory/ (* Security fix *) +--------------------------+ Mon Dec 3 19:58:51 CST 2007 patches/packages/cairo-1.4.12-i486-1_slack12.0.tgz: Upgraded to cairo-1.4.12. This fixes a possible security risk when decoding PNG files that may have been maliciously tampered with: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5503 (* Security fix *) patches/packages/samba-3.0.27a-i486-1_slack12.0.tgz: Upgraded to samba-3.0.27a. This update fixes a crash bug regression experienced by smbfs clients caused by the fix for CVE-2007-4572. +--------------------------+ Sat Dec 1 16:57:18 CST 2007 patches/packages/rsync-2.6.9-i486-2_slack12.0.tgz: Patched some security bugs. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4091 http://lists.samba.org/archive/rsync-announce/2007/000050.html (* Security fix *) patches/packages/mozilla-firefox-2.0.0.11-i686-1.tgz: Upgraded to Firefox 2.0.0.11, which fixed a bug introduced by the 2.0.0.10 update in the feature that affected some web pages and extensions. +--------------------------+ Thu Nov 29 20:19:44 CST 2007 patches/packages/seamonkey-1.1.7-i486-1_slack12.0.tgz: Upgraded to seamonkey-1.1.7. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) +--------------------------+ Thu Nov 29 17:43:33 CST 2007 patches/packages/mkinitrd-1.1.3-i486-4_slack12.0.tgz: Only one more. ;-) Fixed a missing '--parents' in a cp command. Thanks to Eric Hameleers for pointing out the bug. +--------------------------+ Wed Nov 28 12:35:30 CST 2007 patches/packages/mkinitrd-1.1.3-i486-3_slack12.0.tgz: Fix one bug and then find another, eh? Edited two spots where grep was searching for / rather than ' on / '. Thanks to Erik Jan Tromp for pointing out that this needed a patch. +--------------------------+ Tue Nov 27 16:22:09 CST 2007 patches/packages/mkinitrd-1.1.3-i486-2_slack12.0.tgz: Fixed a bug where an extra "/dev" would be prepended incorrectly to some paths. Thanks to CtrlAltCa for reporting this on IRC. patches/packages/mozilla-firefox-2.0.0.10-i686-1.tgz: Upgraded to firefox-2.0.0.10. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) +--------------------------+ Wed Nov 21 00:55:51 CST 2007 patches/packages/libpng-1.2.23-i486-1_slack12.0.tgz: Upgraded to libpng-1.2.23. Previous libpng versions may crash when loading malformed PNG files. It is not currently known if this vulnerability can be exploited to execute malicious code. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5266 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5267 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5268 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5269 (* Security fix *) +--------------------------+ Tue Nov 20 16:49:58 CST 2007 patches/packages/mozilla-thunderbird-2.0.0.9-i686-1.tgz: Upgraded to thunderbird-2.0.0.9. This update fixes the following security related issues: URIs with invalid %-encoding mishandled by Windows (MFSA 2007-36). Crashes with evidence of memory corruption (MFSA 2007-29). OK, so the first one obviously does not affect us. :-) The second fix has to do with the same JavaScript handling problem fixed before in Firefox. JavaScript is not enabled by default in Thunderbird, and the developers (at least in MFSA 2007-36) do not recommend turning it on. For more information, see: http://www.mozilla.org/security/announce/2007/mfsa2007-36.html http://www.mozilla.org/security/announce/2007/mfsa2007-29.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4841 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5339 (* Security fix *) +--------------------------+ Fri Nov 16 17:22:18 CST 2007 patches/packages/samba-3.0.27-i486-1_slack12.0.tgz: Upgraded to samba-3.0.27. Samba 3.0.27 is a security release in order to address a stack buffer overflow in nmbd's logon request processing, and remote code execution in Samba's WINS server daemon (nmbd) when processing name registration followed name query requests. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4572 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5398 (* Security fix *) +--------------------------+ Mon Nov 12 01:25:34 CST 2007 patches/packages/kdegraphics-3.5.7-i486-2_slack12.0.tgz: Patched xpdf related bugs. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393 (* Security fix *) patches/packages/koffice-1.6.3-i486-2_slack12.0.tgz: Patched xpdf related bugs. For more information, see: http://www.kde.org/info/security/advisory-20071107-1.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393 (* Security fix *) patches/packages/poppler-0.6.2-i486-1_slack12.0.tgz: Upgraded to poppler-0.6.2. This release fixes xpdf related bugs. For more information, see: http://poppler.freedesktop.org/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393 (* Security fix *) patches/packages/xpdf-3.02pl2-i486-1_slack12.0.tgz: Upgraded to xpdf-3.02pl2. The pl2 patch fixes a crash in xpdf. Some theorize that this could be used to execute arbitrary code if an untrusted PDF file is opened, but no real-world examples are known (yet). For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393 (* Security fix *) +--------------------------+ Sat Nov 10 15:36:59 CST 2007 patches/packages/mozilla-firefox-2.0.0.9-i686-1.tgz: Upgraded to firefox-2.0.0.9. This upgrade improves the stability of Firefox. For more information, see: http://developer.mozilla.org/devnews/index.php/2007/11/01/firefox-2009-stability-update-now-available-for-download/ patches/packages/php-5.2.5-i486-1_slack12.0.tgz: Upgraded to php-5.2.5. This fixes bugs and security issues. For more information, see: http://www.php.net/releases/5_2_5.php http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4887 (* Security fix *) +--------------------------+ Fri Nov 9 16:34:12 CST 2007 patches/packages/seamonkey-1.1.6-i486-1_slack12.tgz: Upgraded to SeaMonkey 1.1.6. This upgrade fixes SeaMonkey's ability to display certain types of web pages. That's about all we could find about it here: http://www.mozilla.org/projects/seamonkey/ +--------------------------+ Thu Nov 1 22:03:53 CDT 2007 patches/packages/cups-1.2.11-i486-2_slack12.0.tgz: Patched cups-1.2.11. An off-by-one error in ipp.c may allow a remote attacker to crash CUPS resulting in a denial of service. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4351 (* Security fix *) +--------------------------+ Wed Oct 24 22:51:37 CDT 2007 patches/packages/mozilla-firefox-2.0.0.8-i686-1.tgz: Upgraded to firefox-2.0.0.8. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) patches/packages/seamonkey-1.1.5-i486-1_slack12.0.tgz: Upgraded to seamonkey-1.1.5. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) +--------------------------+ Wed Oct 10 11:50:50 CDT 2007 patches/packages/glibc-zoneinfo-2.5-noarch-5_slack12.0.tgz: Upgraded to timezone data from tzcode2007h and tzdata2007h. This contains the latest timezone data from NIST, including some important changes to daylight savings time in Brasil and New Zealand. +--------------------------+ Tue Oct 2 22:25:23 CDT 2007 patches/packages/pidgin-2.2.1-i486-1_slack12.0.tgz: Upgraded to pidgin-2.2.1. This fixes a crash that can be triggered remotely on MSN in 2.2.0. For more information, see: http://www.pidgin.im/news/security/?id=23 (* Security fix *) +--------------------------+ Fri Sep 21 18:13:09 CDT 2007 patches/packages/kdebase-3.5.7-i486-3_slack12.0.tgz: Patched Konqueror to prevent "spoofing" the URL (i.e. displaying a URL other than the one associated with the page displayed) For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3820 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4224 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4225 Patched KDM issue: "KDM can be tricked into performing a password-less login even for accounts with a password set under certain circumstances, namely autologin to be configured and "shutdown with password" enabled." For more information, see: http://www.kde.org/info/security/advisory-20070919-1.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4569 (* Security fix *) patches/packages/kdelibs-3.5.7-i486-3_slack12.0.tgz: Patched Konqueror's supporting libraries to prevent addressbar spoofing. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4225 (* Security fix *) +--------------------------+ Wed Sep 12 15:20:06 CDT 2007 patches/packages/openssh-4.7p1-i486-1_slack12.0.tgz: Upgraded to openssh-4.7p1. From the OpenSSH release notes: "Security bugs resolved in this release: Prevent ssh(1) from using a trusted X11 cookie if creation of an untrusted cookie fails; found and fixed by Jan Pechanec." While it's fair to say that we here at Slackware don't see how this could be leveraged to compromise a system, a) the OpenSSH people (who presumably understand the code better) characterize this as a security bug, b) it has been assigned a CVE entry, and c) OpenSSH is one of the most commonly used network daemons. Better safe than sorry. More information should appear here eventually: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4752 (* Security fix *) patches/packages/php-5.2.4-i486-1_slack12.0.tgz: Upgraded to php-5.2.4. The PHP announcement says this version fixes over 120 bugs as well as "several low priority security bugs." Read more about it here: http://www.php.net/releases/5_2_4.php (* Security fix *) patches/packages/samba-3.0.26a-i486-1_slack12.0.tgz: Upgraded to samba-3.0.26a. This fixes a security issue in all Samba 3.0.25 versions: "Incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin." For more information, see: http://www.samba.org/samba/security/CVE-2007-4138.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4138 (* Security fix *) +--------------------------+ Sat Sep 1 18:23:39 CDT 2007 extra/jdk-6/jdk-6u2-i586-2.tgz: Fixed a bug in the improvement to the /etc/profile.d/ scripts where it would mess up the $MANPATH. Sorry about that, folks. The JRE package was not affected. BTW, any time a security upgrade package mentioned in an advisory is "missing", it probably means a mistake like this was made. In those cases, look for a newer package, and verify the authenticity using "gpg --verify" and the .asc file. +--------------------------+ Fri Aug 31 13:33:54 CDT 2007 patches/packages/jre-6u2-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition Runtime Environment Version 6.0 update 2. This update addresses code errors which could possibly be leveraged to compromise system security, though we know of no existing exploits. This update consists of the official Java(TM) binaries repackaged in Slackware's package format, and may be used on any version of Slackware that is based on glibc. For more information, see: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1 (* Security fix *) An additional change was made to the script that Slackware uses to set environment variables for Java(TM). Now, after the $JAVA_HOME variable is set, the next variable settings make use of it, rather than hard-coding the path to $JAVA_HOME. This does not fix a bug, but is certainly better scripting style. Thanks to Jason Byrne and Jean-Christophe Fargette for suggesting this change. extra/jdk-6/jdk-6u2-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition Development Kit Version 6.0 update 2. This update addresses code errors which could possibly be leveraged to compromise system security, though we know of no existing exploits. This update consists of the official Java(TM) binaries repackaged in Slackware's package format, and may be used on any version of Slackware that is based on glibc. For more information, see: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1 (* Security fix *) An additional change was made to the script that Slackware uses to set environment variables for Java(TM). Now, after the $JAVA_HOME variable is set, the next variable settings make use of it, rather than hard-coding the path to $JAVA_HOME. This does not fix a bug, but is certainly better scripting style. Thanks to Jason Byrne and Jean-Christophe Fargette for suggesting this change. +--------------------------+ Sat Aug 18 15:00:32 CDT 2007 patches/packages/tcpdump-3.9.7-i486-1_slack12.0.tgz: Upgraded to libpcap-0.9.7, tcpdump-3.9.7. This new version fixes an integer overflow in the BGP dissector which could possibly allow remote attackers to crash tcpdump or to execute arbitrary code. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3798 (* Security fix *) +--------------------------+ Fri Aug 10 22:39:13 CDT 2007 patches/packages/gimp-2.2.17-i486-1_slack12.0.tgz: Upgraded to gimp-2.2.17, which fixes buffer overflows when decoding certain image types. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2949 (* Security fix *) patches/packages/poppler-0.5.4-i486-2_slack12.0.tgz: Patched to fix an integer overflow in code borrowed from xpdf. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 (* Security fix *) patches/packages/qt-3.3.8-i486-5_slack12.0.tgz: Patched to fix several format string bugs. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3388 (* Security fix *) patches/packages/seamonkey-1.1.4-i486-1_slack12.tgz: Upgraded to seamonkey-1.1.4. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) patches/packages/xpdf-3.02pl1-i486-1_slack12.0.tgz: Upgraded to xpdf-3.02pl1. This fixes an integer overflow that could possibly be leveraged to run arbitrary code if a malicious PDF file is processed. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 (* Security fix *) +--------------------------+ Fri Aug 3 15:43:35 CDT 2007 patches/packages/mozilla-thunderbird-2.0.0.6-i686-1.tgz: Upgraded to thunderbird-2.0.0.6. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird (* Security fix *) +--------------------------+ Wed Aug 1 13:52:51 CDT 2007 patches/packages/mozilla-firefox-2.0.0.6-i686-1.tgz: Upgraded to firefox-2.0.0.6. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) +--------------------------+ Thu Jul 26 15:51:42 CDT 2007 patches/packages/bind-9.4.1_P1-i486-1_slack12.0.tgz: Upgraded to bind-9.4.1_P1 to fix security issues. The default access control lists allow remote attackers to make recursive queries in BIND9 versions 9.4.0 through 9.4.1. The query IDs in BIND9 prior to BIND 9.4.1-P1 are cryptographically weak. For more information on these issues, see: http://www.isc.org/index.pl?/sw/bind/bind-security.php http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2925 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926 (* Security fix *) +--------------------------+ Tue Jul 24 12:40:16 CDT 2007 patches/packages/mozilla-thunderbird-2.0.0.5-i686-1.tgz: Upgraded to thunderbird-2.0.0.5. Since Thunderbird shares the browser engine with Firefox it is susceptible to similar vulnerabilities. This update fixes the same issues fixed in the recent Firefox patch. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird (* Security fix *) patches/packages/seamonkey-1.1.3-i486-1_slack12.tgz: Upgraded to seamonkey-1.1.3. This is presumably a security update, but the details on the net have been sparse. So far nothing has appeared at the usual URL, but I would treat this as a security update unless it is announced as otherwise. For more information (if/when it appears), see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) +--------------------------+ Thu Jul 19 12:50:36 CDT 2007 patches/packages/mkinitrd-1.1.3-i486-1.tgz: Fixed a minor bug in mkinitrd where devices such as /dev/cciss/c0d0p2 (DL360 RAID) were not properly copied to the initramfs. "Normal" (two level) boot devices such as /dev/sda1 were not affected by this bug, so most people won't run into it (which is probably why it wasn't spotted in development here). Thanks to Eric Hameleers for the patch. patches/packages/mozilla-firefox-2.0.0.5-i686-1.tgz: Upgraded to firefox-2.0.0.5. This upgrade fixes a couple of minor security bugs. Nobody here is launching Firefox from Internet Explorer, right? :-) For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) patches/packages/xf86-video-intel-2.1.0-i486-1.tgz: Added additional chipsets. patches/packages/xf86-video-nv-2.1.2-i486-1.tgz: Added additional chipsets. +--------------------------+ Sun Jul 1 22:30:42 CDT 2007 Released as Slackware 12.0 with no changes since the last batch. Big Thanks again are due to the CREW, without whom this just wouldn't be possible to do with the level of quality that Slackware users demand. We had a lot of help this time, and I hope it shows in project output that you'll enjoy. Thanks for the support of the Slackware community, because without your support I wouldn't be able to keep leading this project (and I happen to like it a lot :-). For more detailed information about what all has changed since Slackware 11.0, start with CHANGES_AND_HINTS.TXT, and maybe read my RELEASE_NOTES. Have fun! +--------------------------+ Sun Jul 1 18:20:45 CDT 2007 n/httpd-2.2.4-i486-6.tgz: Fixed a minor bug in the install script where it would try to back up website directories without checking that they existed. This was harmless (but did make an ugly error). n/network-scripts-12.0-noarch-4.tgz: Removed a silly "sanity check" that figured if you didn't have /bin/telnet that you must not have networking installed. ;-) Thanks to Fredrik for spotting this one. +--------------------------+ Sat Jun 30 22:21:33 CDT 2007 x/xinit-1.0.4-i486-2.tgz: This package should not contain an xinitrc since in contains no window manager. But, since it's probably already installed one on any -current running machine, removing it will remove your symlink to any existing xinitrc.*. If that happens, we link to xinitrc.kde. If that is not your window manager of choice -- sorry about that. A quick run of xwmconfig as root will let you get the system wide defaults back the way you like them. +--------------------------+ Sat Jun 30 21:08:41 CDT 2007 n/network-scripts-12.0-noarch-3.tgz: It looks like 10 is probably the minimum safe automatic DHCP timeout reduction value, as there's been a report that a common cable modem can require about 7 seconds to grant a lease. So 10 is about the best we can do for you "out of the box", but you can always set a lower timeout if that works. :-) Thanks to Catalin Tomozei for the report. +--------------------------+ Sat Jun 30 20:13:46 CDT 2007 isolinux/initrd.img: Fixed parted-1.8.7 tools (libreadline was still required by the "static" binary, so we went all dynamic). Thanks to arny. usb-and-pxe-installers/: Replaced parted-1.8.7 tools with the fixed ones. +--------------------------+ Sat Jun 30 16:06:18 CDT 2007 n/inetd-1.79s-i486-8.tgz: Fixed a couple /opt/kde/ paths in inetd.conf. Thanks to Stas Boukarev for pointing them out. extra/checkinstall/: This had to be removed because it does not work with the latest coreutils. There is a readme in this directory with the URL to checkinstall's homepage, so if you must use checkinstall poll the site periodically to see if a version comes out that fixes this issue. extra/slacktrack/slacktrack-1.32-i486-1.tgz: Merged the newest version. Note that this works, but must touch all the files on the system. This is because installwatch.so does not work with the newest coreutils. However, a new version will probably be created soon that does, so check the slacktrack page (or here, on ftp sites) for possible full-functionality upgrades. +--------------------------+ Sat Jun 30 13:56:39 CDT 2007 n/network-scripts-12.0-noarch-2.tgz: If no explicit DCHP_TIMEOUT is set, then look in /sys to see if the interface has a connection carrier. If not, reduce the DHCP timeout to 3 seconds (which, even if the kernel is wrong, is usually more than enough time for the DHCP server to respond). Thanks to Eric Hameleers for making me add this patch at the 11th hour. ;-) +--------------------------+ Fri Jun 29 23:02:49 CDT 2007 d/pkg-config-0.21-i486-6.tgz: Use a symlink to fix broken packages that think /usr/share/pkgconfig is a good place for .pc files. Move any .pc files found to already exist there. d/mercurial-0.9.4-i486-1.tgz: Upgraded to mercurial-0.9.4. Thanks to Shridhar for getting this one in under the wire. extra/xf86-video-ati-6.6.3/xf86-video-ati-6.6.3-i486-3.tgz: Some people are getting a black screen with newer driver versions, so here is an alternate to try, just in case. +--------------------------+ Fri Jun 29 00:34:26 CDT 2007 a/udev-111-i486-5.tgz: Added some more platform rules in 50-udev-rules. Thanks to Piter Punk for the new udev rules. d/git-1.5.2.2-i486-1.tgz: Upgraded to git-1.5.2.2, fixed .packlist paths, and got git-remote working again (Error.pm was previously missing). Thanks to Dagmar d'Surreal for the patch. l/gd-2.0.35-i486-2.tgz: Fixed 640 perms on docs. Thanks to Steven Masta for pointing this out. n/php-5.2.3-i486-2.tgz: OK, I think we have a working combination of PHP extensions now. If you notice any problems, let me know soon (along with a fix, if possible). As it stands, everything that could be built as an extension is loaded by default, so you may want to do some extension pruning in /etc/httpd/php.ini. kde/kdebase-3.5.7-i486-2.tgz: Fix the same kind of escaping problem as seen below in the xfce fix, also found in /etc/profile.d/kde.csh. Thanks to Laurence Darby and Tsomi. xap/xfce-4.4.1-i486-5.tgz: In xfce4-mixer, use --with-sound=alsa option to make sure that OSS is not used accidentally (probably more of an issue if someone rebuilds, I'm told). Thanks to Tsomi. Use ${VAR} instead of $VAR before a : in xfce.csh. This seems cleaner than escaping the : with a \. Thanks to Laurence Darby again. +--------------------------+ Thu Jun 28 01:44:43 CDT 2007 a/cxxlibs-6.0.8-i486-4.tgz: Restored libstdc++-3-libc6.1-2-2.10.0.so, still required for some commercial software. (Yikes!) a/hdparm-7.6-i486-1.tgz: Upgraded to hdparm-7.6. a/mkinitrd-1.1.2-i486-3.tgz: Fixed a cosmetic boot-time error if cryptsetup is not used in the initramfs. a/sysvinit-scripts-1.2-noarch-13.tgz: Mount usbfs regardless of whether udev is used. VMware and other things need this. Thanks to Bren. Oh, and BTW -- use udev. :-) d/libtool-1.5.24-i486-1.tgz: Upgraded to libtool-1.5.24. d/p2c-1.21alpha2-i486-3.tgz: Fixed build script to optimize properly. Thanks to Martijn Dekker for the bug report and fix. d/rcs-5.7-i486-2.tgz: Fixed incorrect perms (711) on binaries. Thanks to Selkfoster for the report. l/cairo-1.4.10-i486-1.tgz: Upgraded to cairo-1.4.10. l/hal-0.5.9.1-i486-1.tgz: Upgraded to hal-0.5.9.1. l/hal-info-20070618-noarch-1.tgz: Upgraded to hal-info-20070618. n/dhcp-3.0.5-i486-2.tgz: Patched kernel version detection in ./configure, which might make dhclient work. dhcpcd is probably still better though :-) Thanks to Dagmar d'Surreal for the patch. n/httpd-2.2.4-i486-5.tgz: Made the package install script look at the contents of /srv and take care not to wipe out any existing website there, but to back it up instead. Sorry if previous packages bit your site... n/iptables-1.3.8-i486-1.tgz: Upgraded to iptables-1.3.8. n/tcpdump-3.9.6-i486-1.tgz: Upgraded to libpcap-0.9.6 and tcpdump-3.9.6. n/whois-4.7.21-i486-1.tgz: Upgraded to whois-4.7.21. t/tetex-3.0-i486-5.tgz: An often-reported bug in the tetex package has been the missing /var/lib/texmf directory. Some time ago, this was removed for security reasons, since it could possibly be used to overwrite system files by symlinking to them from "font names". The directory, to be useful, had to be world-writable, or at least writable to a tetex group. Then, Mikhail Ulanov suggested setting VARTEXFONTS = $TEXMFVAR, which causes fonts to be built in $HOME/.texmf-var instead. Now TeX is working again for non-root users. Thanks very much Mikhail! :-) t/tetex-doc-3.0-i486-5.tgz: Rebuilt. x/libX11-1.1.1-i486-4.tgz: Patched to fix a bug introduced while converting some code from K&R to ANSI C. This should make gdk+ and GIMP a lot more stable. Thanks to Robby Workman for pointing out the patch on the freedesktop.org site. And thanks to dive from LQ for suggesting we look at libX11, too. :-) +--------------------------+ Wed Jun 27 01:40:34 CDT 2007 a/pkgtools-12.0.0-noarch-4.tgz: Fixed htmlview, making it a short script rather than a symlink (which doesn't always work). Thanks to Sander de Leeuw for the report and fix. kde/kvpnc-0.8.9-i486-1.tgz: Removed. The reports were that this wasn't working (though some said that earlier versions never included in Slackware did). So, it's been deemed not quite stable enough for the stable release. We'll look at it again for next time. l/gd-2.0.35-i486-1.tgz: Upgraded to gd-2.0.35. This fixes a few possible security issues: * Possible infinite loop in the PNG reader * Possible integer overflow in gdImageCreateTrueColor * Possible crash in gdImageCreateXbm * Numerous flaws in the GIF reader (* Security fix *) l/gmime-2.2.9-i486-1.tgz: Upgraded to gmime-2.2.9. n/pssh-1.3.1-noarch-1.tgz: Added pssh-1.3.1, python scripts to run openssh tools in parallel. Thanks to Jan Rafaj for the build script. Normally I wouldn't add things in late RC, but for Jan I'll make an exception. :-) n/samba-3.0.25b-i486-1.tgz: Upgraded to samba-3.0.25b. x/xf86-video-savage-2.1.2-i486-2.tgz: Committed upstream patch to fix a crash of the savage_drv.so driver when respawned. Thanks to Michael Wagner. isolinux/initrd.img: Added parted-1.8.7 tools. kernels/speakup.s/: Backed up speakup to CVS 2007-03-03 and recompiled. I'm hoping this fixes a DecTalk Express problem. Thanks to Stephen C. Greeley for all the help debugging this. usb-and-pxe-installers/: Added parted-1.8.7 tools. +--------------------------+ Tue Jun 26 01:31:45 CDT 2007 This might as well be called 12.0 RC2 so that we're not accused on skimping on release candidates. ;-) Still going through various reports, and (especially) looking into getting the php.ini defaults reasonable (as well as figuring out which features can be safely built as extensions). But, we're getting there. a/aaa_elflibs-12.0.0-i486-3.tgz: Fixed a bad link in the install script. I think the first-boot ldconfig would fix it anyway, but we like things clean around here. Thanks to Robert Boucher for noticing this. a/pkgtools-12.0.0-noarch-3.tgz: Added an installer script to make a /usr/bin/htmlview symlink if one does not already exist (programs in Slackware are starting to expect htmlview, which is not yet a standard but seems to be becoming an ad-hoc one...) So, adding it probably won't hurt too much, other than possibly stinging other distributions that haven't yet added this by encouraging its use. Shame on us. ;-) Thanks to Nikos Skalkotos for pointing out that CUPS uses this script, alias, symlink -- whatever the local implementation... a/udev-111-i486-4.tgz: Make the restart option more through. Thanks to Andrea Zulato for reporting that stop/start was needed to load rule changes, and to Piter Punk for fixing rc.udev. a/util-linux-2.12r-i486-6.tgz: Patched a problem where umounting by UUID would cause umount to segfault for non-root users. Thanks to Diogo R for the pointer to a patch at http://bugs.archlinux.org/task/7211. Evidently this has already been reported upstream. d/binutils-2.17.50.0.17-i486-1.tgz: Upgraded to binutils-2.17.50.0.17. Thanks to Giacomo Lozito for reporting that this was released and seems to be fixing problems with 'ld' segfaulting. d/oprofile-0.9.2-i486-5.tgz: Recompiled against new (binutils) libbfd. kde/k3b-1.0.2-i486-1.tgz: Upgraded to k3b-1.0.2. kdei/k3b-i18n-1.0.2-noarch-1.tgz: Upgraded to k3b-i18n-1.0.2. l/pilot-link-0.12.2-i486-4.tgz: Fixed a bug in pilot-link.m4. Thanks to Michael Stenzel for the bug report and a link to a patch. xap/xchat-2.8.2-i486-2.tgz: Recompiled with official patch. Thanks to Tsomi. extra/intel-wlan-ipw3945: Added a few missing bits and rearranged the tree a bit. Thanks to Gabriel Linder for noticing that the kernel module happens to work with the ieee80211 stack already in our kernel. That makes getting this to work quite a bit easier. :-) isolinux/initrd.img: Updated with fixed umount. pasture/: Flushed devfsd and ipchains. Thanks to Cal Peake. usb-and-pxe-installers/: Updated with fixed umount. usb-and-pxe-installers/etherboot/: Various fixes and docs improvements. Thanks to Erik Jan Tromp. +--------------------------+ Thu Jun 21 19:37:47 CDT 2007 Still working through the pile, so if you don't see your bug report fixed yet, it could still be coming. But, we figured these things should get tested sooner rather than later. :-) a/aaa_elflibs-12.0.0-i486-2.tgz: Upgraded expat library. a/cryptsetup-1.0.5-i486-2.tgz: Fixed locale directory. Thanks to Robby Workman, Greg' Ar Tourter, Cristian Contescu, and Selkfoster. a/glibc-solibs-2.5-i486-4.tgz: Recompiled. a/glibc-zoneinfo-2.5-noarch-4.tgz: Rebuilt. a/gettext-0.16.1-i486-3.tgz: Rebuilt. a/kernel-generic-2.6.21.5-i486-2.tgz: Recompiled Linux 2.6.21.5 single processor generic.s (requires initrd) kernel. a/kernel-generic-smp-2.6.21.5_smp-i686-2.tgz: Recompiled Linux 2.6.21.5 SMP gensmp.s (requires initrd) kernel. a/kernel-huge-2.6.21.5-i486-2.tgz: Recompiled Linux 2.6.21.5 single processor huge.s (full-featured) kernel. a/kernel-huge-smp-2.6.21.5_smp-i686-2.tgz: Recompiled Linux 2.6.21.5 SMP hugesmp.s (full-featured) kernel. a/kernel-modules-2.6.21.5-i486-2.tgz Recompiled Linux 2.6.21.5 UP single processor kernel modules. a/kernel-modules-smp-2.6.21.5_smp-i686-2.tgz Recompiled Linux 2.6.21.5 SMP kernel modules. d/kernel-headers-2.6.21.5_smp-i386-2.tgz: Rebuilt Linux 2.6.21.5 SMP kernel headers. a/pkgtools-12.0.0-noarch-2.tgz: Added rc.snmpd to the services setup menu in the installer. a/shadow-4.0.3-i486-14.tgz: Added plugdev to the list of groups that a user logging in through /bin/login at the console will automatically be added to. With a login manager such as kdm, users will still need to be added to the plugdev group manually. ap/vim-7.1.012-i486-1.tgz: Upgraded to vim-7.1.012. d/gettext-tools-0.16.1-i486-3.tgz: Added back "archive.tar.gz" which is not useless and is required in some cases by the autotools. If anyone else notices any more "useless" stuff being installed by "make install", please inquire with the developers of the upstream source before requesting that it be removed. Thanks. :-) k/kernel-source-2.6.21.5_smp-noarch-2.tgz Rebuilt the Linux 2.6.21.5 SMP kernel source, removing the CONFIG_HEADERS_CHECK option. Thanks to Cardoe in #hal for cluing us in that there were some problems with trying to use the headers found in /usr/src/linux/usr/include as the userspace headers under /usr/include, such as a missing "#define SG_FLAG_LUN_INHIBIT 2" in scsi/sg.h. kde/amarok-1.4.6-i486-1.tgz: Upgraded to amarok-1.4.6. l/esound-0.2.38-i486-1.tgz: Upgraded to esound-0.2.38. l/expat-2.0.1-i486-1.tgz: Upgraded to expat-2.0.1. l/gamin-0.1.8-i486-2.tgz: Changed options to --disable-dnotify and --enable-inotify, which is a superior filesystem tracking method on 2.6.13+ kernels. Thanks to Andrey V. Panov. l/glibc-2.5-i486-4.tgz: Recompiled against the correct 2.6.21.5 headers. l/glibc-i18n-2.5-noarch-4.tgz: Rebuilt. l/glibc-profile-2.5-i486-4.tgz: Recompiled. l/libglade-2.6.1-i486-1.tgz: Upgraded to libglade-2.6.1. l/mhash-0.9.9-i486-1.tgz: Upgraded to mhash-0.9.9. n/mcabber-0.9.3-i486-1.tgz: Upgraded to mcabber-0.9.3. n/net-snmp-5.4-i486-5.tgz: Recompiled without the --enable-reentrant which was causing snmpd to not work. Added a more simple, Slackware-like rc.snmpd. Thanks to Piter Punk for fixing this. n/network-scripts-12.0-noarch-1.tgz: Rebuilt to include the better-commented rc.inet1.conf that was added to source/n/network-scripts/ back in May. Thanks to Eric Hameleers for noticing that the package never got a rebuild after that change. xap/pan-0.131-i486-1.tgz: Upgraded to pan-0.131. xap/pidgin-2.0.2-i486-1.tgz: Upgraded to pidgin-2.0.2. xap/vim-gvim-7.1.012-i486-1.tgz: Upgraded to vim-7.1.012 for GTK+. This also requires the main VIM package... extra/linux-2.6.21.5-nosmp-sdk/: Upgraded the kit to transform the Linux kernel sources in /usr/src/linux/ from SMP to non-SMP without having to recompile them. NOTE: it is probably best to use the SMP kernel even in a single processor machine if it will run. The non-SMP kernels should really be used only in machines that are not at least a Pentium-Pro, or that (for some other reason) will not properly run the SMP kernel. kernels/hugesmp.s/*: Recompiled the hugesmp.s 2.6.21.5 SMP kernel. kernels/huge.s/*: Recompiled the huge.s 2.6.21.5 single processor kernel. kernels/speakup.s/*: Updated speakup from CVS (2007-06-20) and recompiled. testing/packages/gutenprint-5.0.1-i486-1.tgz: Upgraded to gutenprint-5.0.1. +--------------------------+ Thu Jun 14 16:39:01 CDT 2007 It's that time again, and here we have Slackware 12.0 release candidate 1! :-) If we're lucky, we got it all right the first time. Big thanks to the crew. a/aaa_base-12.0.0-noarch-1.tgz: Updated versions to 12.0. a/aaa_elflibs-12.0.0-i486-1.tgz: Updated the initial library collection. a/coreutils-6.9-i486-1.tgz: Upgraded to coreutils-6.9. a/cryptsetup-1.0.5-i486-1.tgz: Added cryptsetup-1.0.5. Thanks to Eric Hameleers. a/device-mapper-1.02.19-i486-1.tgz: Split udev rules out of 50-udev-rules into 64-device-mapper.rules in this package. Thanks to Piter Punk. Added a few more ./configure options to ensure that device permissions are the same as for other disk devices. Thanks to Cal Peake. Moved from AP. a/file-4.21-i486-1.tgz: Upgraded to file-4.21. a/findutils-4.2.31-i486-1.tgz: Upgraded to findutils-4.2.31. a/gettext-0.16.1-i486-2.tgz: Recompiled. a/glibc-solibs-2.5-i486-3.tgz: Recompiled against 2.6.21.5 kernel headers. a/glibc-zoneinfo-2.5-noarch-3.tgz: Upgraded to tzcode/tzdata 2007f. a/kernel-generic-2.6.21.5-i486-1.tgz: Upgraded to Linux 2.6.21.5 single processor generic.s (requires initrd) kernel. a/kernel-generic-smp-2.6.21.5_smp-i686-1.tgz: Upgraded to Linux 2.6.21.5 SMP gensmp.s (requires initrd) kernel. a/kernel-huge-2.6.21.5-i486-1.tgz: Upgraded to Linux 2.6.21.5 single processor huge.s (full-featured) kernel. a/kernel-huge-smp-2.6.21.5_smp-i686-1.tgz: Upgraded to Linux 2.6.21.5 SMP hugesmp.s (full-featured) kernel. a/kernel-modules-2.6.21.5-i486-1.tgz Upgraded to Linux 2.6.21.5 UP single processor kernel modules. a/kernel-modules-smp-2.6.21.5_smp-i686-1.tgz Upgraded to Linux 2.6.21.5 SMP kernel modules. a/lilo-22.8-i486-4.tgz: Fixed some menu formatting in liloconfig. a/lvm2-2.02.09-i486-1.tgz: Moved from AP. a/mdadm-2.6.1-i486-1.tgz: Moved from AP. a/mkinitrd-1.1.2-i486-2.tgz: Added $@ after /sbin/init in the initrd. Added additional option -C option for cryptsetup, and -L option for LVM to mkinitrd. Thanks to Eric Hameleers and Piter Punk. :-) a/mt-st-0.9b-i486-2.tgz: Moved from AP. a/mtx-1.3.9-i486-2.tgz: Moved from AP. a/openssl-solibs-0.9.8e-i486-3.tgz: Recompiled. a/pciutils-2.2.5-i486-1.tgz: Upgraded to pciutils-2.2.5. a/pkgtools-12.0.0-noarch-1.tgz: Bumped version number. a/quota-3.13-i486-1.tgz: Moved from AP. a/sdparm-1.01-i486-2.tgz: slack-desc typo fix. a/syslinux-3.36-i486-1.tgz: Upgraded to syslinux-3.36. a/sysvinit-scripts-1.2-noarch-12.tgz: Fixed missing "start" for rc.ntpd in rc.M. Thanks to Dieter Rauschenberger, Gunnar Florus, and ivv mm for reporting this. Fixed missing rc.bluetooth start in rc.M. Thanks to Ricardson Williams. Moved the LVM init block in rc.S closer to the start of the script (right after udev) to make root-on-LVM (with an appropriate initrd) more feasible. Suggested by Eric Hameleers, with thanks to Luigi Genoni for helpful advice. a/udev-111-i486-3.tgz: Removed device-mapper rules from 50-udev-rules. Fixed a bug in /lib/udev/modprobe.sh. Thanks to Piter Punk. ap/alsa-utils-1.0.14-i486-1.tgz: Upgraded to alsa-utils-1.0.14. ap/hplip-1.7.4a-i486-2.tgz: Changed the default mode on rc.hplip.new to 644. ap/lsof-4.78-i486-1.tgz: Upgraded to lsof-4.78. ap/man-pages-2.55-noarch-1.tgz: Upgraded to man-pages-2.55. ap/vim-7.1.002-i486-1.tgz: Upgraded to vim-7.1.002. Fixed sh syntax highlighting. Thanks to Amritpal Bath and Chip Campbell for the report and fix. d/doxygen-1.5.2-i486-1.tgz: Upgraded to doxygen-1.5.2. d/gettext-tools-0.16.1-i486-2.tgz: Removed (probably) useless archive.tar.gz blob from the package. Thanks to Tomas Matejicek for pointing it out. d/git-1.5.2.1-i486-1.tgz: Upgraded to git-1.5.2.1. d/kernel-headers-2.6.21.5_smp-i386-1.tgz: Upgraded to Linux 2.6.21.5 SMP kernel headers. d/p2c-1.21alpha2-i486-2.tgz: Recompiled with gcc4 to get this working again. Thanks to Martijn Dekker for noticing the problem and suggesting some improvements. d/subversion-1.4.4-i486-1.tgz: Upgraded to subversion-1.4.4. f/linux-howtos-20070609-noarch-1.tgz: Upgraded to Linux-HOWTOs-20070609. k/kernel-source-2.6.21.5_smp-noarch-1.tgz Upgraded to Linux 2.6.21.5 SMP kernel source. Thanks to Shridhar for noticing that the oprofile module was not in .config. kde/knemo-0.4.8-i486-1.tgz: Added knemo-0.4.8. kde/kdesdk-3.5.7-i486-2.tgz: Fixed uncompressed man pages. This also seemed to pick up new support for bugzilla. Thanks to Michael Wagner for pointing out the uncompressed man pages. kde/kdelibs-3.5.7-i486-2.tgz: Patched to call utempter in the proper location and with the right arguments. Thanks to Ken Milmore for the patch. kde/koffice-1.6.3-i486-1.tgz: Upgraded to koffice-1.6.3. kde/kvpnc-0.8.9-i486-1.tgz: Added kvpnc-0.8.9. kdei/koffice*: Upgraded to koffice-l10n 1.6.3. l/alsa-lib-1.0.14a-i486-1.tgz: Upgraded to alsa-lib-1.0.14a. l/alsa-oss-1.0.14-i486-1.tgz: Upgraded to alsa-oss-1.0.14. l/cairo-1.4.8-i486-1.tgz: Upgraded to cairo-1.4.8. l/glibc-2.5-i486-3.tgz: Recompiled against 2.6.21.5 kernel headers. l/glibc-profile-2.5-i486-3.tgz: Recompiled against 2.6.21.5 kernel headers. l/gtk+2-2.10.13-i486-1.tgz: Upgraded to gtk+2-2.10.13. l/hal-0.5.9-i486-3.tgz: Changed the default mode on rc.hald.new to 755. l/mcs-0.4.1-i486-2.tgz: slack-desc typo fix. l/lzo-2.02-i486-1.tgz: Added lzo-2.02. Thanks to Ricardson Williams. l/shared-mime-info-0.21-i486-2.tgz: Fixed an uncompressed man page. Thanks to Michael Wagner for pointing out the uncompressed man page. l/svgalib_helper-1.9.25_2.6.21.5-i486-1.tgz: Upgraded svgalib_helper package. Both SMP and non-SMP kernel modules are included. l/t1lib-5.1.0-i486-3.tgz: Corrected the font search path. Thanks to Guru. l/vte-0.16.5-i486-1.tgz: Upgraded to vte-0.16.5. n/bind-9.4.1-i486-1.tgz: Upgraded to bind-9.4.1. n/httpd-2.2.4-i486-4.tgz: Moved the main directory to the usual Slackware location of "/var/www", which should ease transitioning existing sites as well as prevent /srv from becoming (right away) a bloated top-level directory. In /srv, make two symlinks for FHS compliance: /srv/www -> /var/www (this makes htdig with KDE work again), and /srv/httpd -> /var/www (/srv/httpd will be the default path used in the httpd.conf, and seems to me to be following the spirit behind "/srv"). Thanks to Willy Sudiarto Raharjo for pointing out that these paths needed some adjustment to fix KDE's help search system (htdig). Since the old apache had visible log files (in a 755 mode directory), make these visible, too. If the admin wants to lock them down, we'll make sure the chosen mode sticks. Thanks to Dieter Rauschenberger. n/lynx-2.8.6rel.5-i486-1.tgz: Upgraded to lynx-2.8.6rel.5. Compiled with --with-screen=ncursesw and --enable-widec. Thanks to Stas Boukarev. n/mcabber-0.9.2-i486-1.tgz: Added mcabber-0.9.2. n/mtr-0.72-i486-1.tgz: Added mtr-0.72. n/net-snmp-5.4-i486-4.tgz: Fixed a few uncompressed man pages. Thanks to Michael Wagner for pointing out the uncompressed man pages. n/nmap-4.20-i486-1.tgz: Upgraded to nmap-4.20. n/openssl-0.9.8e-i486-3.tgz: Added certwatch script. Thanks to Jan Rafaj. n/openvpn-2.0.9-i486-1.tgz: Added openvpn-2.0.9. Thanks to Alan Hicks. :-) n/sendmail-8.14.1-i486-1.tgz: Upgraded to sendmail-8.14.1. Changed the default mode on rc.sendmail.new to 644. n/sendmail-cf-8.14.1-noarch-1.tgz: Upgraded to sendmail-8.14.1 config files. n/tcpdump-3.9.5-i486-1.tgz: Upgraded to tcpdump-3.9.5. n/vlan-1.9-i486-2.tgz: Recompiled. tcl/tcl-8.4.15-i486-1.tgz: Upgraded to tcl-8.4.15. tcl/tk-8.4.15-i486-1.tgz: Upgraded to tk-8.4.15. x/dejavu-ttf-2.17-noarch-1.tgz: Upgraded to dejavu-ttf-2.17. x/xkeyboard-config-0.9-noarch-2.tgz: Make sure /etc/X11/xkb/symbols/pc is installed as a file. If not, back up /etc/X11/xkb to make way for the new structure of xkeyboard-config. Thanks to Corvin Dun and David Jeannot for the bug reports. xap/audacious-plugins-1.3.5-i486-1.tgz: Upgraded to audacious-plugins-1.3.5. xap/mozilla-thunderbird-2.0.0.4-i686-1.tgz: Upgraded to thunderbird-2.0.0.4. This upgrade fixes two possible security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird (* Security fix *) xap/pidgin-2.0.1-i486-1.tgz: Upgraded to pidgin-2.0.1. xap/vim-gvim-7.1.002-i486-1.tgz: Upgraded to GTK+ vim-7.1.002 add-on. xap/xfce-4.4.1-i486-4.tgz: Fixed uncompressed man pages. Escaped the ':'s in /etc/profile.d/xfce.csh. Thanks to Laurence Darby. xap/xine-lib-1.1.7-i686-1.tgz: Upgraded to xine-lib-1.1.7. extra/grub/grub-0.97-i486-3.tgz: Use C locale for proper fdisk parsing in other locales. Thanks to Seb for the patch. :-) extra/intel-wlan-ipw3945: Added kernel patches and support sources for using the Intel ipw3945 wireless drivers. Due to the need to patch the kernel for a newer ieee80211 subsystem, these are all in source form rather than as packages. Consider it an opportunity to learn. :-) extra/linux-wlan-ng/linux-wlan-ng-0.2.8_2.6.21.5-i486-1.tgz: Recompiled linux-wlan-ng-0.2.8 with modules for Linux 2.6.21.5 (both SMP and non-SMP). extra/linux-2.6.21.5-nosmp-sdk/: Upgraded the kit to transform the Linux kernel sources in /usr/src/linux/ from SMP to non-SMP without having to recompile them. NOTE: it is probably best to use the SMP kernel even in a single processor machine if it will run. The non-SMP kernels should really be used only in machines that are not at least a Pentium-Pro, or that (for some other reason) will not properly run the SMP kernel. extra/slackpkg/slackpkg-2.61-noarch-2.tgz: Upgraded to slackpkg-2.61-noarch-2. Thanks to Piter Punk! isolinux/initrd.img: Merged Eric Hameleers' LVM installer changes. Added cryptsetup. Updated syslinux. Added dhcpcd. Version number bump. kernels/huge.s/*: Upgraded huge.s kernel to 2.6.21.5. kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.21.5 (SMP). kernels/speakup.s/*: Added kernel with Speakup support. usb-and-pxe-installers/: Updated USB and PXE installers with merged-in (semi-DIY) LVM and crypto support. Thanks to Eric Hameleers! usb-and-pxe-installers/etherboot/: Added floppy images to support a PXE install with Ethernet cards and/or BIOS that lack hardware PXE support. Thanks to Erik Jan Tromp for keeping the floppy disk install alive! +--------------------------+ Wed Jun 13 22:14:23 CDT 2007 l/libexif-0.6.16-i486-1.tgz: Upgraded to libexif-0.6.16. An integer overflow in libexif can crash applications that use the library on malformed images. The upstream advisory indicates that this flaw could also be used to execute arbitrary code in the context of the user, but no exploit is known (by us) to exist among iDefense's researchers or in the wild. But, as a crash bug and heap overflow one must suppose that the possibility exists. http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4168 (* Security fix *) +--------------------------+ Fri Jun 1 19:42:08 CDT 2007 x/libSM-1.0.3-i486-1.tgz: Upgraded to libSM-1.0.3. x/xf86-video-ati-6.6.192-i486-1.tgz: Upgraded to xf86-video-ati-6.6.192. x/xf86-video-nv-2.0.96-i486-1.tgz: Upgraded to xf86-video-nv-2.0.96. x/xinit-1.0.4-i486-1.tgz: Upgraded to xinit-1.0.4. xap/mozilla-firefox-2.0.0.4-i686-1.tgz: Upgraded to mozilla-firefox-2.0.0.4. This upgrade fixes several possible security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox (* Security fix *) xap/seamonkey-1.1.2-i486-1.tgz: Upgraded to seamonkey-1.1.2. This upgrade fixes several possible security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey (* Security fix *) +--------------------------+ Fri Jun 1 14:19:37 CDT 2007 n/php-5.2.3-i486-1.tgz: Upgraded to php-5.2.3. Here's some basic information about the release from php.net: "This release continues to improve the security and the stability of the 5.X branch as well as addressing two regressions introduced by the previous 5.2 releases. These regressions relate to the timeout handling over non-blocking SSL connections and the lack of HTTP_RAW_POST_DATA in certain conditions. All users are encouraged to upgrade to this release." For more complete information, see: http://www.php.net/releases/5_2_3.php http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1900 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2756 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2872 (* Security fix *) +--------------------------+ Thu May 31 22:38:10 CDT 2007 a/gpm-1.20.1-i486-4.tgz: Added exps2 to the setup.mouse menu (thanks alphageek) a/hdparm-7.4-i486-1.tgz: Upgraded to hdparm-7.4. a/lilo-22.8-i486-3.tgz: Restored device-mapper support. Made the MBR the default selection in the LILO target menu. a/reiserfsprogs-3.6.19-i486-2.tgz: Recompiled. a/sdparm-1.01-i486-1.tgz: Added sdparm-1.01. a/sysvinit-scripts-1.2-noarch-11.tgz: Start rc.ntpd in rc.M (if executable). a/udev-111-i486-2.tgz: Merged various changes from Piter Punk to more easily blacklist the PnP modules. Thanks! :-) ap/device-mapper-1.02.19-i486-1.tgz: Upgraded to device-mapper-1.02.19. d/gperf-3.0.3-i486-1.tgz: Upgraded to gperf-3.0.3. n/nfs-utils-1.1.0-i486-2.tgz: Removed dangling symlinks in /sbin. Thanks to Luigi Genoni. isolinux/initrd.img: Added libdevmapper, upgraded to the latest dmsetup. +--------------------------+ Wed May 30 22:14:18 CDT 2007 kde/kdeutils-3.5.7-i486-2.tgz: Patched to fix a problem with the klaptopdaemon library. Thanks to Ricardson Williams for the bug report. l/dbus-1.0.2-i486-3.tgz: Fixed startup script to avoid problems when D-Bus doesn't clean up its .pid file. l/hal-0.5.9-i486-2.tgz: Cleanups to rc.hald. Thanks to "ivv mm" for reporting the problem with these startup scripts (most obvious if one tries to go to runlevel 1 and then back to runlevel 3). +--------------------------+ Mon May 28 20:03:53 CDT 2007 a/dialog-1.1_20070528-i486-1.tgz: Upgraded to dialog-1.1_20070528. a/etc-11.1-noarch-6.tgz: Added power (84) group to /etc/group. Added haldaemon (82) user to /etc/passwd, group to /etc/group, and empty shadow line to /etc/shadow. a/kernel-generic-smp-2.6.21.3_smp-i686-1.tgz: Upgraded to Linux 2.6.21.3 SMP gensmp.s (requires initrd) kernel. a/kernel-generic-2.6.21.3-i486-1.tgz: Upgraded to Linux 2.6.21.3 single processor generic.s (requires initrd) kernel. a/kernel-huge-smp-2.6.21.3_smp-i686-1.tgz: Upgraded to Linux 2.6.21.3 SMP hugesmp.s (full-featured) kernel. a/kernel-huge-2.6.21.3-i486-1.tgz: Upgraded to Linux 2.6.21.3 single processor huge.s (full-featured) kernel. a/kernel-modules-smp-2.6.21.3_smp-i686-1.tgz: Upgraded to Linux 2.6.21.3 SMP kernel modules. a/kernel-modules-2.6.21.3-i486-1.tgz: Upgraded to Linux 2.6.21.3 UP single processor kernel modules. a/pkgtools-11.0.9-noarch-6.tgz: Support making a USB boot stick during the installation process as an emergency boot device. Thanks to Eric Hameleers! Added more options to the setup.services menu. a/sysvinit-scripts-1.2-noarch-10.tgz: In rc.M, start rc.hald if executable. d/kernel-headers-2.6.21.3_smp-i386-1.tgz: Upgraded to Linux 2.6.21.3 SMP kernel headers. d/pkg-config-0.21-i486-5.tgz: Recompiled, removing /opt/kde/lib/pkgconfig from PKG_CONFIG_PATH. Thanks to sombriks. :-) k/kernel-source-2.6.21.3_smp-noarch-1.tgz: Upgraded to Linux 2.6.21.3 SMP kernel source. kde/amarok-1.4.5-i486-5.tgz: Recompiled against new libraries. kde/kdeaccessibility-3.5.7-i486-1.tgz: Upgraded to kdeaccessibility-3.5.7. kde/kdeaddons-3.5.7-i486-1.tgz: Upgraded to kdeaddons-3.5.7. kde/kdeadmin-3.5.7-i486-1.tgz: Upgraded to kdeadmin-3.5.7. kde/kdeartwork-3.5.7-i486-1.tgz: Upgraded to kdeartwork-3.5.7. kde/kdebase-3.5.7-i486-1.tgz: Upgraded to kdebase-3.5.7. (with HAL support) kde/kdebindings-3.5.7-i486-1.tgz: Upgraded to kdebindings-3.5.7. kde/kdeedu-3.5.7-i486-1.tgz: Upgraded to kdeedu-3.5.7. kde/kdegames-3.5.7-i486-1.tgz: Upgraded to kdegames-3.5.7. kde/kdegraphics-3.5.7-i486-1.tgz: Upgraded to kdegraphics-3.5.7. kde/kdelibs-3.5.7-i486-1.tgz: Upgraded to kdelibs-3.5.7. kde/kdemultimedia-3.5.7-i486-1.tgz: Upgraded to kdemultimedia-3.5.7. kde/kdenetwork-3.5.7-i486-1.tgz: Upgraded to kdenetwork-3.5.7. kde/kdepim-3.5.7-i486-1.tgz: Upgraded to kdepim-3.5.7. kde/kdesdk-3.5.7-i486-1.tgz: Upgraded to kdesdk-3.5.7. kde/kdetoys-3.5.7-i486-1.tgz: Upgraded to kdetoys-3.5.7. kde/kdeutils-3.5.7-i486-1.tgz: Upgraded to kdeutils-3.5.7. kde/kdevelop-3.4.1-i486-1.tgz: Upgraded to kdevelop-3.4.1. kde/kdewebdev-3.5.7-i486-1.tgz: Upgraded to kdewebdev-3.5.7. kdei/*: Upgraded to kde-i18n 3.5.7. l/arts-1.5.7-i486-1.tgz: Upgraded to arts-1.5.7. l/dbus-1.0.2-i486-2.tgz: Patched rc.messagebus to add a "reload" option to be used after adding users to groups such as plugdev, cdrom, etc. Thanks to Eric Hameleers. l/dbus-glib-0.73-i486-1.tgz: Upgraded to dbus-glib-0.73. l/desktop-file-utils-0.12-i486-2.tgz: Added BLURB to setup script. l/hal-0.5.9-i486-1.tgz: Added hal-0.5.9. Thanks to Ole Andre Rodlie and Robby Workman for the help. :-) l/hal-info-20070516-noarch-1.tgz: Added hal-info-20070516. l/libexif-0.6.15-i486-1.tgz: Upgraded to libexif-0.6.15. l/libkarma-0.1.0-i486-1.tgz: Upgraded to libkarma-0.1.0. l/libmtp-0.1.5-i486-1.tgz: Upgraded to libmtp-0.1.5. l/libnjb-2.2.5-i486-4.tgz: Moved libnjb.rules to 80-libnjb.rules. Got rid of obsolete hotplug files. l/shared-mime-info-0.21-i486-1.tgz: Upgraded to shared-mime-info-0.21. Added BLURB to setup script. l/svgalib-1.9.25-i486-1.tgz: This package no longer contains the kernel modules required by svgalib, which are now packaged in a separate svgalib_helper package. l/svgalib_helper-1.9.25_2.6.21.3-i486-1.tgz: Added svgalib_helper containing the kernel helper module for svgalib. Both SMP and non-SMP modules are included in the package. l/qt-3.3.8-i486-4.tgz: Rebuilt with the sources in /usr/lib/qt/, but using DESTDIR to create a finished package in /tmp. Thanks to Stuart Winter for figuring out this trick. :-) n/httpd-2.2.4-i486-3.tgz: Fixed recursion bug in the logrotate config file. Fixed incorrect options to rc.httpd (thanks to mrgoblin). n/mutt-1.4.2.3-i486-1.tgz: Upgraded to mutt-1.4.2.3. n/php-5.2.2-i486-3.tgz: Modularized all extensions, and fixed PEAR problems. Moved PHP session file to /var/lib/php. Show an example of how to run all .php, .html, and .htm files through PHP by default (thanks to mrgoblin). Thanks to Rodrigo Fuentealba for help on what ./configure options to use. n/samba-3.0.25a-i486-1.tgz: Upgraded to samba-3.0.25a. This fixes some major (non-security) bugs in samba-3.0.25 -- see the WHATSNEW.txt for details. x/x11-skel-7.1-noarch-6.tgz: Fixed number of lines in slack-desc. xap/audacious-plugins-1.3.4-i486-2.tgz: Fixed crash on non-SSE2 platforms due to use of an SSE2 instruction in the libmadplug.so plugin. Thanks to everyone who reported this, to Giacomo Lozito for the patch, and to Tsomi for testing it. :-) xap/blackbox-0.65.0-i486-4.tgz: Fixed the SlackBuild to build bbkeys. Thanks to Mikhail Zotov for the bug report and fix. xap/gimp-2.2.15-i486-1.tgz: Upgraded to gimp-2.2.15. xap/sane-1.0.18-i486-5.tgz: Moved libsane.rules to 80-libsane.rules. Got rid of obsolete hotplug files. xap/xfce-4.4.1-i486-3.tgz: Recompiled against HAL. extra/linux-2.6.21.3-nosmp-sdk/: Upgraded the kit to transform the Linux kernel sources in /usr/src/linux/ from SMP to non-SMP without having to recompile them. NOTE: it is probably best to use the SMP kernel even in a single processor machine if it will run. The non-SMP kernels should really be used only in machines that are not at least a Pentium-Pro, or that (for some other reason) will not properly run the SMP kernel. extra/linux-wlan-ng/linux-wlan-ng-0.2.8_2.6.21.3-i486-1.tgz: Upgraded to linux-wlan-ng-0.2.8 with modules for Linux 2.6.21.3 (both SMP and non-SMP). extra/xcdroast: This has been shuffled off to unsupported, at least for now. But before moving it, it was patched for -current and rebuilt with GTK+2. isolinux/initrd.img: Comment out /dev/cdrom line in /etc/fstab, as it interferes with HAL. After installing, you'll have to decide if the machine will use HAL or not. If so, rc.hald will have been selected to run during the installation (by default it will be off), or chmoded 755 later. If HAL will not be used, the line in /etc/fstab should be uncommented. Changed timezone on the installer to GMT-12, so that when the true timezone is known at first boot, the filesystems will all have been created and last checked in the past. Added /sbin/sfdisk. isolinux/{network,pcmcia}.dsk: Upgraded to 2.6.21.3 modules (thanks Eric!). kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.21.3 (SMP). kernels/huge.s/*: Upgraded huge.s kernel to 2.6.21.3. kernels/gensmp.s/*: Upgraded gensmp.s kernel to 2.6.21.3 (SMP). kernels/generic.s/*: Upgraded generic.s kernel to 2.6.21.3. usb-and-pxe-installers/: Updated USB and PXE installers. Thanks to Eric Hameleers. +--------------------------+ Sun May 20 21:40:15 CDT 2007 a/umsdos-progs-1.13-i386-1.tgz: Removed, since the 2.6.x kernel does not support the UMSDOS filesystem. n/httpd-2.2.4-i486-2.tgz: Fixed /usr/doc/httpd-2.2.4/ directory. +--------------------------+ Sat May 19 15:49:00 CDT 2007 a/etc-11.1-noarch-5.tgz: Added plugdev group (83). Added apache user and group (80). a/udev-111-i486-1.tgz: Upgraded to udev-111. Thanks to Piter Punk for keeping everything in this package working as well as it does. :-) d/subversion-1.4.3-i486-2.tgz: Recompiled with support for the mod_authz_svn and mod_dav_svn modules for httpd-2.2.4 (apache2). l/pilot-link-0.12.2-i486-3.tgz: Removed empty /usr/share/pilot-link/udev/. n/apache-1.3.37-i486-3.tgz: Removed. n/bluez-utils-3.9-i486-3.tgz: Added "restart" to rc.bluetooth, and rewrote it to be more like the other Slackware rc.* scripts. Chmoded /etc/bluetooth/passkeys/ to mode 700. Located the udev related files properly (thanks to Piter Punk). n/httpd-2.2.4-i486-1.tgz: The package formerly known as "apache", upgraded to httpd-2.2.4. n/mod_ssl-2.8.28_1.3.37-i486-1.tgz: Removed, as this is now built into httpd. n/nfs-utils-1.1.0-i486-1.tgz: Upgraded to nfs-utils-1.1.0. This no longer tries to use "rpc.lockd" (nor contains it), so be sure to upgrade to the new versions of the init scripts. Thanks to Jonathan Woithe for the hint about linking with -lnsl after -lwrap, and for passing along a small patch for a memory leak in mountd. n/obexftp-0.21-i486-1.tgz: Added obexftp-0.21. n/php-5.2.2-i486-2.tgz: Upgraded to php-5.2.2. n/portmap-6.0-i486-1.tgz: Upgraded to portmap-6.0. n/wireless-tools-28-i486-5.tgz: Applied a patch from Eric Hameleers to fix a problem reported by Michiel P.H. van Wessem. isolinux/initrd.img: Upgraded /sbin/mdadm to version 2.6.1. +--------------------------+ Wed May 16 15:49:51 CDT 2007 a/sysvinit-scripts-1.2-noarch-9.tgz: Many reports of problems after the last addition of the old trick for flushing disk buffers. I guess if your rc.local needs this sort of thing to avoid trouble at boot, that you'd better add it near the beginning of that script. l/libpng-1.2.18-i486-1.tgz: Upgraded to libpng-1.2.18. A grayscale PNG image with a malformed (bad CRC) tRNS chunk will crash some libpng applications. This vulnerability has been assigned the identifiers CVE-2007-2445 and CERT VU#684664. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2445 (* Security fix *) +--------------------------+ Tue May 15 21:50:17 CDT 2007 a/etc-11.1-noarch-4.tgz: The lack of a shadow entry for "messagebus" was bothering some people, so it was added (but it should make no difference). a/infozip-5.52-i486-2.tgz: Upgraded zip to version 2.32. Restored missing COPYING.OLD text file (reported by Steffen Wendzel). a/sysvinit-2.86-i486-5.tgz: Removed the sysvinit runlevel directories. a/sysvinit-functions-8.53-i486-2.tgz: Moved all the non-Slackware-like runlevel directories, etc, into this package. If nothing on your machine uses it, it is safe to remove. I promised "guru" not to clutter up his machine with these. :-) a/sysvinit-scripts-1.2-noarch-8.tgz: Removed the sysvinit runlevel directories. Added a wait/sync/sleep before rc.local to be sure all I/O is done. Thanks to Mark for the advice on that. a/udev-109-i486-3.tgz: Changed the following serial-type devices to use group uucp: ttyS[0-9]*, ttyUSB[0-9]*, ippp0, isdn*, dcbri*, and ircomm*. ap/ksh93-2007_03_28-i486-2.tgz: Fixed incorrect locale file permissions. Thanks to Piter Punk. ap/man-pages-2.48-noarch-1.tgz: Upgraded to man-pages-2.48. ap/mt-st-0.9b-i486-2.tgz: Added mt-st.1.gz -> mt.1.gz symlink. Thanks to Piter Punk. d/git-1.5.1.4-i486-1.tgz: Upgraded to git-1.5.1.4. l/pilot-link-0.12.2-i486-2.tgz: Changed udev rules to use group "uucp", which has traditionally been the serial device group for Slackware, Red Hat, and many other distributions. n/bluez-utils-3.9-i486-2.tgz: Rebuilt with suggestions and addtions from the folks at slacky.eu. Thanks! :-) n/net-snmp-5.4-i486-3.tgz: Added missing /var/lib/net-snmp directory. Thanks to Luczak Jacek. n/netkit-rwho-0.17-i486-2.tgz: Fixed missing /var/spool/rwho. Thanks to Piter Punk. n/network-scripts-11.1-noarch-3.tgz: Changed netconfig's method of determining if it is running from the installer. Hopefully it will get it right more often now. :-) Thanks to Marco Bonetti. n/openobex-1.3-i486-1.tgz: Added openobex-1.3. xap/gnuchess-5.07-i486-3.tgz: Upgraded to eboard-1.0.3, and applied various other fixes provided by Yair K. Thanks! extra/ktorrent/ktorrent-2.1.4-i486-1.tgz: Upgraded to ktorrent-2.1.4. extra/linux-2.6.21.1-nosmp-sdk/patch-to-non-smp.sh: Patched to fix an incorrect path to the kernel sources. Thanks to Michael Gehring. +--------------------------+ Mon May 14 18:16:10 CDT 2007 a/openssl-solibs-0.9.8e-i486-2.tgz: Patched a small bug that could cause OpenSSL to improperly decrypt older archives. ap/vim-7.1.001-i486-1.tgz: Upgraded to vim-7.1.001. n/openssl-0.9.8e-i486-2.tgz: Patched, recompiled. n/samba-3.0.25-i486-1.tgz: Upgraded to samba-3.0.25. Security Fixes included in the Samba 3.0.25 release are: o CVE-2007-2444 Versions: Samba 3.0.23d - 3.0.25pre2 Local SID/Name translation bug can result in user privilege elevation o CVE-2007-2446 Versions: Samba 3.0.0 - 3.0.24 Multiple heap overflows allow remote code execution o CVE-2007-2447 Versions: Samba 3.0.0 - 3.0.24 Unescaped user input parameters are passed as arguments to /bin/sh allowing for remote command execution For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2444 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447 (* Security fix *) xap/vim-gvim-7.1.001-i486-1.tgz: Upgraded to vim-7.1.001 for GTK+. isolinux/initrd.img: Applied patch to /bin/pcmcia to work with Eric's new pcmcia.dsk image. Thanks to Eric Hameleers for the patch. isolinux/pcmcia.dsk: PCMCIA tools added by Eric Hameleers. usb-and-pxe-installers/: Updated USB and PXE installers with PCMCIA support. Thanks to Eric Hameleers. +--------------------------+ Fri May 11 17:26:49 CDT 2007 a/bash-3.1.017-i486-2.tgz: Reverted back to bash-3.1.017 (recompiled). bash-3.2 was moved into /testing. Please see below for the full rationale. a/cups-1.2.11-i486-1.tgz: Upgraded to cups-1.2.11. Only link against OpenSSL, not GnuTLS (as this doesn't add any useful new functionality, only new dependencies). Thanks to Iain Paton for the report. Install any new rc.cups (or rc.cups.new) with the same perms as the old one. a/mkinitrd-1.1.2-i486-1.tgz: Fixed a bug where modules in the initrd were not being replaced with the newer versions in /lib/modules/$(uname -r) if they existed on the initrd already. Changed the load_kernel_modules script to use $(uname -r) when loading modules so that the same initrd can be used with many different kernels. Now, -k and -m can be used to add additional modules to an initrd without disturbing existing ones. ap/linuxdoc-tools-0.9.21-i486-4.tgz: Added asciidoc-8.2.1 and xmlto-0.0.18. Upgraded to docbook-4.5 and gtk-doc-1.8. Thanks to Stuart Winter for improving Jerome Pinot's original build scripts to build from as many original sources as possible, and adding new features. l/aspell-0.60.5-i486-2.tgz: Recompiled against libncursesw to enable utf8. Thanks to Tomas Szepe for letting me know aspell was missing utf8 support, and about the missing link (see directly below). l/ncurses-5.6-i486-2.tgz: Added /usr/include/ncurses -> /usr/include/ncursesw symlink. Thanks to Tomas Szepe for the bug report. n/epic4-2.6-i486-1.tgz: Upgraded to epic4-2.6. n/fetchmail-6.3.8-i486-2.tgz: Fetchmail installed a sample script in the docs world-writable. Fixed. Thanks to Piter Punk. n/gnupg2-2.0.4-i486-1.tgz: Upgraded to gnupg-2.0.4. n/iputils-s20070202-i486-2.tgz: Recompiled. The iputils SGML -> man pages will build now. :-) n/network-scripts-11.1-noarch-2.tgz: Merged fixes from Eric Hameleers. Reduced the default DCHP timeout from 60 to 30 seconds. Added an example of IP aliasing setup to /etc/rc.d/rc.inet1.conf.new. n/wireless-tools-28-i486-4.tgz: Applied Eric Hameleers' patch to rc.wireless. x/xorg-server-1.3.0.0-i486-2.tgz: Recompiled with a patch found on https://bugs.freedesktop.org/show_bug.cgi?id=9758 by Iain Paton, which should fix the issues with X ignoring dpi settings. x/xorg-server-xdmx-1.3.0.0-i486-2.tgz: Recompiled. x/xorg-server-xnest-1.3.0.0-i486-2.tgz: Recompiled. x/xorg-server-xvfb-1.3.0.0-i486-2.tgz: Recompiled. xap/audacious-plugins-1.3.4-i486-1.tgz: Upgraded to audacious-plugins-1.3.4. xap/pidgin-2.0.0-i486-2.tgz: Here's a little excerpt from: http://developer.pidgin.im/wiki/WhyPackagesExist "We have no developers using Slack, and furthermore, several of us actively dislike that distribution for its history of broken installs, as well as for its non-existant package management. You cannot create true packages for Slack." Well, I'm somewhat shocked by this, having never (to my knowledge) done anything to any of the former GAIM or Pidgin developers to make them mad at me, Slackware, or anyone on the Slackware team. I guess if they feel it's not possible to make a "true" Pidgin package for Slackware, there's no point in continuing to try. Having put out 7 security advisories on GAIM, I'm quite sure there will be less work here if Pidgin is not included. The Pidgin package has been moved to the "unsupported" directory. For the record, I do not actively dislike Pidgin or any of their developers, but I do plan to use Kopete from now on. xap/xpaint-2.7.8.1-i486-2.tgz: Moved man page to the correct location. Thanks to Dan Church for the bug report. extra/linux-2.6.21.1-nosmp-sdk: Added kernel-headers and a patch to easily convert from the default SMP Linux source configuration to the non-SMP one. If you are running a non-SMP kernel, once you run the script in this directory you will be able to easily install software that involves compiling kernel modules (such as the binary nVidia drivers). extra/parted/parted-1.8.7-i486-1.tgz: Upgraded to parted-1.8.7. isolinux/pcmcia.dsk: Updated by Eric Hameleers. testing/packages/bash-3.2.017-i486-1.tgz: Upgraded to bash-3.2.017. Moved here from slackware/a. Honestly, I think /testing may be a better place for bash-3.2 for a while longer -- it's causing trouble with many old scripts. So, we'll give it a while longer to stabilize and for scripts to catch up to any syntax changes which may have occurred. The fix for 99.9% of these old scripts is to not use the deprecated `command` syntax and instead use the $(command) syntax. usb-and-pxe-installers/: Updated USB and PXE installers. Thanks to Eric Hameleers. +--------------------------+ Wed May 9 00:16:20 CDT 2007 extra/slackpkg/slackpkg-2.60-noarch-1.tgz: Upgraded to slackpkg-2.60. Thanks to Piter Punk. +--------------------------+ Mon May 7 20:44:46 CDT 2007 a/gzip-1.3.12-i486-1.tgz: Upgraded to gzip-1.3.12. a/lilo-22.8-i486-2.tgz: Removed device-mapper/lvm2 support until we have new versions of both of these that will compile with this kernel. l/libxml2-2.6.28-i486-1.tgz: Upgraded to libxml2-2.6.28. n/curl-7.16.2-i486-1.tgz: Upgraded to curl-7.16.2. n/fetchmail-6.3.8-i486-1.tgz: Upgraded to fetchmail-6.3.8. Added "fetchmail is probably not secure" to slack-desc. When we've seldom had a Slackware release that didn't need a fetchmail security advisory before the next Slackware was out, I think that's fair to say. (* Security fix *) n/getmail-4.7.4-noarch-1.tgz: A secure python-based fetchmail alternative. n/gnutls-1.6.2-i486-1.tgz: Upgraded to gnutls-1.6.2. n/links-2.1pre28-i486-1.tgz: Upgraded to links-2.1pre28. n/netkit-ntalk-0.17-i486-2.tgz: Fixed build script and slack-desc. Thanks to Steffen Wendzel. n/ntp-4.2.4p0-i486-1.tgz: Upgraded to ntp-4.2.4p0. Thanks to Mikhail Ulanov for configuration and scripting help. n/php-4.4.7-i486-1.tgz: Upgraded to php-4.4.7. This fixes bugs and improves security. For more details, see: http://www.php.net/releases/4_4_7.php http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1001 (* Security fix *) xap/xchat-2.8.2-i486-1.tgz: Upgraded to xchat-2.8.2. extra/php5/php-5.2.2-i486-1.tgz: Upgraded to php-5.2.2. This fixes bugs and improves security. For more details, see: http://www.php.net/releases/5_2_2.php http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1001 (* Security fix *) extra/slacktrack/slacktrack-1.31-i486-2.tgz: Upgraded to slacktrack-1.31_2. Thanks to Stuart Winter. +--------------------------+ Sun May 6 15:48:18 CDT 2007 a/kernel-generic-2.6.21.1-i486-2.tgz: Recompiled. This should bring out 2.6.21.2 in a matter of seconds. a/kernel-generic-smp-2.6.21.1_smp-i686-2.tgz: Recompiled. a/kernel-huge-2.6.21.1-i486-2.tgz: Recompiled. a/kernel-huge-smp-2.6.21.1_smp-i686-2.tgz: Recompiled. a/kernel-modules-2.6.21.1-i486-2.tgz: Recompiled. a/kernel-modules-smp-2.6.21.1_smp-i686-2.tgz: Patched SiS 900 driver that was causing system crashes. Thanks to Michael Wagner, Paolo Segre, Piter Punk, and Jens Odsvall for reporting the problem. Usually I'd say to report it to the kernel people, but it's already in GIT and I'll make an exception this time about patching the kernel here. :-) d/kernel-headers-2.6.21.1_smp-i386-2.tgz: Rebuilt. a/mkinitrd-1.1.1-i486-1.tgz: Upgraded mkinitrd to 1.1.1. Thanks to Piter Punk for the patch to resolve kernel module dependencies automatically. :-) ap/dvd+rw-tools-7.0-i486-2.tgz: Applied a couple of patches needed to burn with 2.6.21.x kernels with some burners. Thanks to Fedora. ;-) ap/mdadm-2.6.1-i486-1.tgz: Upgraded to mdadm-2.6.1. k/kernel-source-2.6.21.1_smp-noarch-2.tgz: Patched SiS 900 driver. +--------------------------+ Sat May 5 14:09:30 CDT 2007 xap/pidgin-2.0.0-i486-2.tgz: My Pidgin build script left a couple "droppings" in the / directory. Thanks to all those who reported this. +--------------------------+ Fri May 4 21:21:56 CDT 2007 a/sysvinit-scripts-1.2-noarch-7.tgz: Added back calls to start/stop rc.pcmcia. Thanks to alemao for the bug report. a/openssl-solibs-0.9.8e-i486-1.tgz: Upgraded to openssl-0.9.8e. ap/dmidecode-2.9-i486-1.tgz: Added dmidecode-2.9. ap/hplip-1.7.4a-i486-1.tgz: Upgraded to hplip-1.7.4a. ap/lsscsi-0.19-i486-1.tgz: Added lsscsi-0.19. Thanks to Stuart Winter for suggesting this great tool. ap/vim-7.0.240-i486-1.tgz: Upgraded to vim-7.0.240. d/binutils-2.17.50.0.15-i486-1.tgz: Upgraded to binutils-2.17.50.0.15. d/python-2.5.1-i486-1.tgz: Upgraded to python-2.5.1. d/oprofile-0.9.2-i486-3.tgz: Recompiled against libbfd-2.17.50.0.15.20070418.so from binutils-2.17.50.0.15. l/cairo-1.4.6-i486-1.tgz: Upgraded to cairo-1.4.6. l/glib2-2.12.12-i486-1.tgz: Upgraded to glib-2.12.12. l/gnome-icon-theme-2.14.2-noarch-2.tgz: Fixed incorrect pkgconfig path. Thanks to Robby Workman. l/gtk+2-2.10.12-i486-1.tgz: Upgraded to gtk+-2.10.12. l/libart_lgpl-2.3.19-i486-1.tgz: Upgraded to libart_lgpl-2.3.19. l/pango-1.16.4-i486-1.tgz: Upgraded to pango-1.16.4. l/vte-0.16.3-i486-1.tgz: Upgraded to vte-0.16.3. n/lftp-3.5.10-i486-1.tgz: Upgraded to lftp-3.5.10. n/htdig-3.2.0b6-i486-3.tgz: Fixed a typo in the "common_dir" path in /etc/htdig.conf. Thanks to Tomasz Slodkowicz for pointing it out. n/irssi-0.8.11-i486-2.tgz: Fixed /usr/doc/irssi-0.8.11/docs directory perms. n/openssl-0.9.8e-i486-1.tgz: Upgraded to openssl-0.9.8e. x/libXcomposite-0.3.2-i486-1.tgz: Upgraded to libXcomposite-0.3.2. x/xf86-video-nv-2.0.95-i486-1.tgz: Upgraded to xf86-video-nv-2.0.95. xap/pidgin-2.0.0-i486-1.tgz: Added pidgin-2.0.0, renaming that other package ;-) and representing a major upgrade. Congratulations to the Pidgin team! xap/xine-ui-0.99.5-i686-1.tgz: Upgraded to xine-ui-0.99.5. xap/vim-gvim-7.0.240-i486-1.tgz: Upgraded to vim-7.0.240 for X11/GTK+. isolinux/initrd.img: Removed kernel modules. The kernels we're booting with now have these drivers built-in. +--------------------------+ Tue May 1 15:07:21 CDT 2007 a/glibc-solibs-2.5-i486-2.tgz: Recompiled against Linux 2.6.21.1. a/glibc-zoneinfo-2.5-noarch-2.tgz: Rebuilt from tzcode2007e and tzdata2007e. a/kernel-generic-2.6.21.1-i486-1.tgz: Upgraded to Linux 2.6.21.1 single processor generic.s (requires initrd). a/kernel-generic-smp-2.6.21.1_smp-i686-1.tgz: Upgraded to Linux 2.6.21.1 generic SMP gensmp.s (requires initrd) kernel. a/kernel-huge-2.6.21.1-i486-1.tgz: Upgraded to Linux 2.6.21.1 single processor huge.s (full-featured) kernel. a/kernel-huge-smp-2.6.21.1_smp-i686-1.tgz: Upgraded to Linux 2.6.21.1 SMP hugesmp.s (full-featured) kernel. a/kernel-modules-2.6.21.1-i486-1.tgz: Upgraded to Linux 2.6.21.1 single processor kernel modules. a/kernel-modules-smp-2.6.21.1_smp-i686-1.tgz: Upgraded to Linux 2.6.21.1 SMP kernel modules. a/pkgtools-11.0.9-noarch-5.tgz: Removed the "make boot disk" menu until we have a viable replacement implemented. Link up to the install kernel automatically. Setkernel menu eliminated -- feedback welcome. a/udev-109-i486-2.tgz: Fixed /sbin/scsi_id and /sbin/vol_id symlinks. Thanks to Alfredo Rojas Ilabaca. d/kernel-headers-2.6.21.1_smp-i386-1.tgz: Upgraded to Linux 2.6.21.1 SMP kernel headers. k/kernel-source-2.6.21.1_smp-noarch-1.tgz: Upgraded to Linux 2.6.21.1 SMP kernel source. l/glibc-2.5-i486-2.tgz: Recompiled against Linux 2.6.21.1. l/glibc-i18n-2.5-noarch-2.tgz: Rebuilt. l/glibc-profile-2.5-i486-2.tgz: Recompiled against Linux 2.6.21.1. l/svgalib-1.9.25_2.6.21.1-i486-1.tgz: Recompiled for Linux 2.6.21.1. kernels/generic.s/*: Upgraded generic.s kernel to 2.6.21.1. kernels/gensmp.s/*: Upgraded gensmp.s kernel to 2.6.21.1 (SMP). kernels/huge.s/*: Upgraded huge.s kernel to 2.6.21.1. kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.21.1 (SMP). isolinux/initrd.img: Upgraded kernel modules. isolinux/network.dsk: Added 2.6.21.1 SMP and non-SMP modules. usb-and-pxe-installers/: Updated USB and PXE installers. Thanks to Eric Hameleers. +--------------------------+ Mon Apr 30 01:35:44 CDT 2007 a/pcmciautils-014-i486-3.tgz: Merged patches from Piter Punk. a/sysvinit-functions-8.53-i486-1.tgz: Split the RH-like functions and the supporting binaries out into a new package. /etc/init.d/functions now requires no patching to work on Slackware. a/sysvinit-scripts-1.2-noarch-6.tgz: Removed "functions" and /etc/init.d/ symbolic link. Thanks to Giacomo Picconi for pointing out how the /etc/init.d/ symlink could wipe out existing scripts. ap/mc-4.6.1_20070309-i486-2.tgz: Changed from --with-x=no to --with-x=yes. MC can now load X support dynamically without requiring a hard link (or dependency) on any of the X packages. This gives better keyboard support in an xterm. Thanks to Andrey V. Panov for telling me about this. a/udev-109-i486-1.tgz: Upgraded to udev-109. Thanks to Piter Punk! Added /dev/ttyUSB* symlinks. Thanks to giovanni quadriglio. ap/nano-2.0.6-i486-1.tgz: Upgraded to nano-2.0.6. l/cairo-1.4.4-i486-1.tgz: Upgraded to cairo-1.4.4. n/biff+comsat-0.17-i486-1.tgz: Split from old tcpip package. n/bridge-utils-1.2-i486-1.tgz: Split from old tcpip package. n/bsd-finger-0.17-i486-1.tgz: Split from old tcpip package. n/dnsmasq-2.39-i486-1.tgz: Upgraded to dnsmasq-2.39. n/ethtool-5-i486-1.tgz: Split from old tcpip package. n/icmpinfo-1.11-i486-1.tgz: Split from old tcpip package. n/iputils-s20070202-i486-1.tgz: Split from old tcpip package. Upgraded to iputils-s20070202. n/irssi-0.8.11-i486-1.tgz: Upgraded to irssi-0.8.11. n/net-tools-1.60-i486-1.tgz: Split from old tcpip package. n/netdate-bsd4-i486-1.tgz: Split from old tcpip package. n/netkit-bootparamd-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-ftp-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-ntalk-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-routed-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-rsh-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-rusers-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-rwall-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-rwho-0.17-i486-1.tgz: Split from old tcpip package. n/netkit-timed-0.17-i486-1.tgz: Split from old tcpip package. n/net-snmp-5.4-i486-2.tgz: Fixed a bug in the build script where cat was used instead of zcat to install a compressed config file. Oddly, the -1 package seems to be OK though (the config file is not compressed). Thanks to Jacek Luczak for the bug report. Added --without-rpm to the ./configure list. Thanks to Stuart Winter. n/network-scripts-11.1-noarch-1.tgz: Split from old tcpip package. n/netwrite-0.17-i486-1.tgz: Split from old tcpip package. n/tcp_wrappers-7.6-i486-1.tgz: Split from old tcpip package. n/tcpip-0.17-i486-39.tgz: Removed. (split into tiny little pieces) n/telnet-0.17-i486-1.tgz: Split from old tcpip package. n/tftp-hpa-0.48-i486-1.tgz: Split from old tcpip package. Upgraded to tftp-hpa-0.48. n/vlan-1.9-i486-1.tgz: Split from old tcpip package. x/bdftopcf-1.0.1-i486-1.tgz: Upgraded to bdftopcf-1.0.1. x/inputproto-1.4.2-noarch-1.tgz: Upgraded to inputproto-1.4.2. x/xf86-input-joystick-1.2.1-i486-1.tgz: Upgraded to xf86-input-joystick-1.2.1. x/xf86-input-acecad-1.2.0-i486-1.tgz: Upgraded to xf86-input-acecad-1.2.0. x/xf86-video-ati-6.6.3-i486-3.tgz: Dropped back to xf86-video-ati-6.6.3 after more reports of signal 11 crashes at boot and general instability in the newer driver. The newer one is reported to be faster, though. :-) xap/gnuplot-4.2.0-i486-1.tgz: Upgraded to gnuplot-4.2.0. +--------------------------+ Mon Apr 23 20:41:35 CDT 2007 a/cxxlibs-6.0.8-i486-3.tgz: Added back libstdc++-3-libc6.2-2-2.10.0.so, which seems to be needed by a lot of binaries floating around. a/isapnptools-1.26-i486-2.tgz: Patched for newer kernels and recompiled. a/lilo-22.8-i486-1.tgz: Upgraded to lilo-22.8. a/sysvinit-scripts-1.2-noarch-5.tgz: Make a symlink /etc/init.d -> /etc/rc.d/rc.init.d, since that's where many things expect to find the "functions" script. Thanks to Catalin Tomozei for the report. In rc.M, move fc-cache further up and background the process. ap/nano-2.0.5-i486-1.tgz: Upgraded to nano-2.0.5. d/strace-4.5.15-i486-1.tgz: Upgraded to strace-4.5.15. kde/kdepim-3.5.6-i486-7.tgz: Recompiled against pilot-link-0.12.2. l/pilot-link-0.12.2-i486-1.tgz: Upgraded to pilot-link-0.12.2 compiled with support for BlueZ, or Bluetooth(TM). n/bluez-firmware-1.2-i486-1.tgz: Added bluez-firmware-1.2. n/bluez-hcidump-1.34-i486-1.tgz: Added bluez-hcidump-1.34. n/bluez-libs-3.9-i486-1.tgz: Added bluez-libs-3.9. n/bluez-utils-3.9-i486-1.tgz: Added bluez-utils-3.9. n/htdig-3.2.0b6-i486-2.tgz: Fix a couple bugs in the default config file. Thanks to Dieter Rauschenberger. x/x11-skel-7.1-noarch-5.tgz: Removed /etc/xdg symlink. x/: Removed a bunch of redundant .txt files. Thanks to Tomas Matejicek. extra/parted/parted-1.8.6-i486-1.tgz: Upgraded to parted-1.8.6. Thanks to Piter Punk for the ./configure patch. +--------------------------+ Sun Apr 22 19:32:55 CDT 2007 kde/kdepim-3.5.6-i486-6.tgz: Recompiled with a patch to fix utf8 password encoding in KMail. kdei/koffice-l10n-km-1.6.2-noarch-1a.tgz: Fixed empty slack-desc. x/ttf-indic-fonts-0.4.7.4-noarch-1.tgz: Upgraded to ttf-indic-fonts-0.4.7.4. +--------------------------+ Sun Apr 22 14:04:37 CDT 2007 a/etc-11.1-noarch-3.tgz: In ld.so.conf, remove /usr/X11R6/lib to prevent it from showing up in ldd paths. Thanks to TJ Nardi for the report. Removed /usr/X11R6/bin from the $PATH. l/freetype-2.3.4-i486-3.tgz: Evidently unless TT_CONFIG_OPTION_UNPATENTED_HINTING is undefined the bytecode interpreter will remain disabled even if TT_CONFIG_OPTION_BYTECODE_INTERPRETER is defined. Thanks to Eric Hameleers for the new patch. extra/jdk-6/jdk-6u1-i586-1.tgz: Some of the mirrors got a corrupted copy of this package, so I've touched the files to push them out to the mirrors again. usb-and-pxe-installers/: Updated USB and PXE installers. Thanks to Eric Hameleers. +--------------------------+ Sat Apr 21 15:19:04 CDT 2007 kde/amarok-1.4.5-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdeaccessibility-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdeaddons-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdeadmin-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdeartwork-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdebase-3.5.6-i486-5.tgz: Recompiled with --sysconfdir=/etc/kde. Added a symlink from /etc/X11/kdm to /etc/kde/kdm. In /etc/profile.d/kde.*sh, set XDG_CONFIG_DIRS to contain /etc/kde/xdg (plus /etc/xdg and any previously set $XDG_CONFIG_DIRS). This avoids a problem when several desktops use /etc/xdg for XDG_CONFIG_DIRS and files may get overwritten. Although /etc/xdg is defined as the default XDG config dir, nothing should really use it or collision problems may occur. Thanks to Gyula for pointing out this issue. kde/kdebindings-3.5.6-i486-5.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdeedu-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdegames-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdegraphics-3.5.6-i486-5.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdelibs-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdemultimedia-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdenetwork-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdepim-3.5.6-i486-5.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdesdk-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdetoys-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdeutils-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdevelop-3.4.0-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/kdewebdev-3.5.6-i486-4.tgz: Recompiled with --sysconfdir=/etc/kde. kde/koffice-1.6.2-i486-5.tgz: Recompiled with --sysconfdir=/etc/kde. l/arts-1.5.6-i486-4.tgz: Recompiled. l/freetype-2.3.4-i486-2.tgz: Fixed bytecode interpreter patch and added a subpixel rendering patch. Note that these are disabled by default because they use methods which are patented by Apple and Microsoft. Do not enable them unless you have obtained the required licenses. l/jre-6u1-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition Runtime Environment Version 6.0 update 1. x/xf86-video-ati-6.6.191-i486-2.tgz: This seems to work without any noticable delays or other problems here now that we're using xorg-server-1.3.0.0, so we'll give it another try. x/xf86-video-intel-2.0.0-i486-1.tgz: Upgraded to xf86-video-intel-2.0.0. x/xorg-server-1.3.0.0-i486-1.tgz: Upgraded to xorg-server-1.3.0.0. x/xorg-server-xdmx-1.3.0.0-i486-1.tgz: Upgraded to xorg-server-1.3.0.0. x/xorg-server-xnest-1.3.0.0-i486-1.tgz: Upgraded to xorg-server-1.3.0.0. x/xorg-server-xvfb-1.3.0.0-i486-1.tgz: Upgraded to xorg-server-1.3.0.0. xap/imagemagick-6.3.3_9-i486-1.tgz: Upgraded to ImageMagick-6.3.3-9. xap/xfce-4.4.1-i486-2.tgz: Recompiled with --sysconfdir=/etc/xfce. In /etc/profile.d/xfce.*sh, set XDG_CONFIG_DIRS to contain /etc/xfce/xdg (plus /etc/xdg and any previously set $XDG_CONFIG_DIRS). xap/xscreensaver-5.02-i486-1.tgz: Upgraded to xscreensaver-5.02. extra/jdk-6/jdk-6u1-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition Development Kit Version 6.0 update 1. extra/slacktrack/slacktrack-1.31-i486-1.tgz: Upgraded to slacktrack-1.31_1. Thanks to Stuart Winter. +--------------------------+ Thu Apr 19 18:34:58 CDT 2007 kde/k3b-1.0.1-i486-1.tgz: Upgraded to k3b-1.0.1. Moved into main tree now that k3b is no longer trying to make cdrecord setuid root. :-) kdei/k3b-i18n-1.0.1-noarch-1.tgz: Upgraded to k3b-i18n-1.0.1. x/xf86-video-ati-6.6.3-i486-2.tgz: Rebuilt the xf86-video-ati as I've gotten sereral signal 11 crash reports on the 6.6.191, but none on 6.6.3. On my Radeon 9600 here the 6.6.191 shuts off the signal to the monitor for a few seconds before continuing, but doesn't crash. The 6.6.3 version doesn't do this. Anyway, if I'm causing more trouble here than I'm fixing, let me know. x/xf86-video-nv-2.0.2-i486-1.tgz: Upgraded to xf86-video-nv-2.0.2. xap/blackbox-0.65.0-i486-3.tgz: Fixed zero length xinitrc.blackbox. Thanks to arny and Michiel P.H. van Wessem for reporting the bug. xap/fluxbox-1.0rc3-i486-1.tgz: Upgraded to fluxbox-1.0rc3. xap/gimp-2.2.14-i486-1.tgz: Upgraded to gimp-2.2.14. xap/mozilla-thunderbird-2.0.0.0-i686-1.tgz: Upgraded to thunderbird-2.0.0.0. +--------------------------+ Thu Apr 19 10:58:08 CDT 2007 a/mkinitrd-1.1.0-i486-2.tgz: Fixed sed substitutions in README.initrd. Thanks to Tsomi. kde/kdebase-3.5.6-i486-4.tgz: Fixed an Xsession bug when using tcsh. Thanks to Jim Diamond. Patched a bug in the nsplugin keyboard handler. xap/xine-lib-1.1.6-i686-2.tgz: Deleted extra junk from the docs directory. Thanks to Tsomi. +--------------------------+ Wed Apr 18 14:27:40 CDT 2007 l/svgalib-1.9.25_2.6.18.8_smp-i486-3.tgz: Recompiled. extra/linux-wlan-ng/linux-wlan-ng-0.2.7_2.6.18.8_smp-i486-1.tgz: Recompiled. +--------------------------+ Wed Apr 18 13:32:53 CDT 2007 ap/hplip-1.7.3-i486-3.tgz: Recompiled, actually *linking* with net-snmp. Thanks to my fellow slacker David Somero for pointing this one out. isolinux/initrd.img: Updated kernel modules. isolinux/network.dsk: Updated kernel modules. +--------------------------+ Tue Apr 17 22:27:54 CDT 2007 xap/xine-lib-1.1.6-i686-1.tgz: Upgraded to xine-lib-1.1.6. Thanks to Shin-ichi Abe for pointing this out so quickly. :-) +--------------------------+ Tue Apr 17 18:16:29 CDT 2007 a/dialog-1.1_20070409-i486-1.tgz: Upgraded to dialog-1.1-20070409. Added wide character support (suggested by Valentin Stoykov). a/kernel-generic-2.6.18.8_smp-i686-2.tgz: Recompiled Linux 2.6.18.8 SMP generic.s (requires initrd) kernel to use CFQ I/O scheduling by default. Also not that this kernel NO LONGER has ext2 built into it, and ext3 requires an additional module. See below in the mkinitrd comments. a/kernel-huge-2.6.18.8_smp-i686-2.tgz: Recompiled Linux 2.6.18.8 SMP huge.s (full-featured) kernel. a/kernel-modules-2.6.18.8_smp-i686-2.tgz Recompiled Linux 2.6.18.8 SMP kernel modules. a/mkinitrd-1.1.0-i486-1.tgz: Use an initramfs instead of an initrd. This allows making the ext2 filesystem as a module in the generic kernel. NOTE: Because of changes to the kernel options, *everyone* using an initrd must rebuild it! And, ext3 requires an additional module: mbcache:jbd:ext3 a/sysvinit-2.86-i486-4.tgz: Patched killall5 (pidof) to add feature from the RH fork... a/sysvinit-scripts-1.2-noarch-4.tgz: Moved /etc/init.d/functions here, as it may need work more often than originally thought. Removed /initrd directory stuff from rc.S and rc.6. ap/hplip-1.7.3-i486-2.tgz: Recompiled with net-snmp. I saw it go by during ./configure, but having no test devices I'll need some feedback to know if this gets HP network printers supported. ap/ksh93-2007_03_28-i486-1.tgz: Upgraded to ksh93-2007_03_28. d/kernel-headers-2.6.18.8_smp-i386-2.tgz: Regenerated Linux 2.6.18.8 SMP kernel headers. f/linux-howtos-20070412-noarch-1.tgz: Upgraded to Linux-HOWTOs-20070412. k/kernel-source-2.6.18.8_smp-noarch-2.tgz: Rebuilt Linux 2.6.18.8 SMP kernel source package with new .config. kde/kdegraphics-3.5.6-i486-4.tgz: Recompiled against poppler. kde/kdepim-3.5.6-i486-4.tgz: Recompiled against pilot-link-0.12.1. kde/koffice-1.6.2-i486-4.tgz: Recompiled against poppler. l/freetype-2.3.4-i486-1.tgz: Upgraded to freetype-2.3.4. Fixed an overflow parsing BDF fonts. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1351 (* Security fix *) l/pilot-link-0.12.1-i486-1.tgz: Upgraded to pilot-link-0.12.1. l/poppler-0.5.4-i486-1.tgz: Added poppler-0.5.4. l/poppler-data-0.1-noarch-1.tgz: Added poppler-data-0.1. l/sdl-1.2.11-i486-3.tgz: Patched SDL_ttf for new freetype. l/vte-0.16.1-i486-2.tgz: Recompiled to fix a broken libvte.la. Thanks to Robby Workman. n/net-snmp-5.4-i486-1.tgz: Added net-snmp. This is needed for HP's network printers, but will probably find other uses as well. x/fontconfig-2.4.2-i486-2.tgz: Removed 10-autohint.conf symlink. Thanks to Laurence Darby and Darrell Anderson. Index all default directories in /usr/share/fonts except for 75dpi and 100dpi (as this makes X prefer bitmapped fonts in some cases where scaled fonts look much nicer). Thanks to Lukasz Derkacz -- sorry to render your name into ASCII ;-) x/libXdamage-1.1.1-i486-1.tgz: Upgraded to libXdamage-1.1.1. x/libXi-1.0.4-i486-1.tgz: Upgraded to libXi-1.0.4. x/x11-skel-7.1-noarch-4.tgz: Added /etc/xdg -> /etc/X11/xdg symlink. Thanks to Jerome Pinot for pointing out that the web page describing the XDG_CONFIG_DIRS environment variable states that the default is /etc/xdg unless something else is set. (Hmmm... things are installing themselves to the wrong place without help ;-) x/xf86-input-keyboard-1.2.0-i486-1.tgz: Upgraded to xf86-input-keyboard-1.2.0. Thanks to Andrzej Szelachowski for noticing that libXdamage and xf86-input-keyboard were not the latest versions. xap/audacious-plugins-1.3.3-i486-1.tgz: Upgraded to audacious-plugins-1.3.3. xap/gkrellm-2.2.10-i486-2.tgz: Fixed /usr/local path in gkrellm.pc. xap/x3270-3.3.5-i486-2.tgz: Moved fonts directly into /usr/share/fonts/misc. Thanks to "guru" for noticing that they were following a symlink. xap/xfce-4.4.1-i486-1.tgz: Upgraded to XFce-4.4.1. xap/xine-lib-1.1.5-i686-1.tgz: Upgraded to xine-lib-1.1.5. This fixes overflows in some little-used media formats. These overflows could definitely cause an application using xine-lib to crash, and it is theorized that a malicious media file could be made to run arbitrary code in the context of the user running the application. (* Security fix *) xap/xpdf-3.02-i486-1.tgz: Upgraded to xpdf-3.02. Removed the command-line utilities that are present in poppler. kernels/generic.s/*: Recompiled generic.s kernel to 2.6.18.8 (SMP). kernels/huge.s/*: Recompiled huge.s kernel to 2.6.18.8 (SMP). usb-and-pxe-installers/: Upgraded USB and PXE installers from Eric Hameleers. +--------------------------+ Tue Apr 10 16:57:30 CDT 2007 a/aaa_base-11.1.1-noarch-1.tgz: Added /srv directory. After backing up any real /usr/X11R6, create a compatibility symlink tree to support all the software out there that'll be looking for /usr/X11R6 5 years from now. a/cpio-2.5-i486-3.tgz: Recompiled. Newer versions break initramfs in the 2.6.18.x kernels, so we'll still have to wait on an upgrade... Fixed broken manpages. Thanks for the reports from Tsomi and Lilong Li. a/sysklogd-1.4.1-i486-10.tgz: Patched to compile with gcc4. Made the syslogd/klogd race handling script (hopefully) faster. a/sysvinit-scripts-1.2-noarch-3.tgz: Moved ldconfig up to near the top of rc.M and '&'ed it, which should be safe enough. Moved clockset to earlier in rc.S to avoid the "last mounted in the future" message from fsck seen by people keeping the local time (rather than UTC) in the hardware clock in certain timezones. Thanks to Darrell Anderson for reporting this and providing a fix. ap/bc-1.06.95-i486-1.tgz: Upgraded to bc-1.06.95, since the old bc won't compile with a recent flex. This version tests faster, too. ap/espgs-8.15.4-i486-2.tgz: Recompiled to let altertrack handle gziping and symlinking the manpages. ap/hplip-1.7.3-i486-1.tgz: Upgraded to hplip-1.7.3. ap/lm_sensors-2.10.3-i486-1.tgz: Upgraded to lm_sensors-2.10.3. ap/mc-4.6.1_20070309-i486-1.tgz: Patched with mc-4.6.1-2007-03-09-18 to fix various bugs. Thanks to Markus Kanet and Eugene Bogoroditskiy for pointing out the patch. The bug of being unable to cd to a directory containing '_' was also reported by Tomas Matejicek and Richard Hoyle. ap/nano-2.0.4-i486-1.tgz: Upgraded to nano-2.0.4. ap/screen-4.0.3-i486-1.tgz: Recompiled. ap/zsh-4.3.2-i486-2.tgz: Don't clobber an existing /etc/zprofile. Thanks to Stanislaw Klekot. d/flex-2.5.33-i486-3.tgz: Added lex -> flex symlink. Thanks to Luigi. d/ruby-1.8.6-i486-1.tgz: Upgraded to ruby-1.8.6. kde/kdebindings-3.5.6-i486-4.tgz: Fixed DCOP.3 manpage (hopefully for good). l/atk-1.18.0-i486-1.tgz: Upgraded to atk-1.18.0. l/cairo-1.4.2-i486-1.tgz: Upgraded to cairo-1.4.2. l/glib2-2.12.11-i486-1.tgz: Upgraded to glib-2.12.11. l/gtk+2-2.10.11-i486-1.tgz: Upgraded to gtk+2-2.10.11. l/pango-1.16.1-i486-1.tgz: Upgraded to pango-1.16.1. l/readline-5.2-i486-2.tgz: Recompiled with readline52-002 patch. Added --enable-multibyte option. l/vte-0.16.1-i486-1.tgz: Upgraded to vte-0.16.1. n/apache-1.3.37-i486-3.tgz: Added /srv/www -> /var/www symlink. n/htdig-3.2.0b6-i486-1.tgz: Upgraded to htdig-3.2.0b6. n/proftpd-1.3.0a-i486-1.tgz: Recompiled. x/libXfont-1.2.8-i486-1.tgz: Upgraded to libXfont-1.2.8. x/x11-skel-7.1-noarch-3.tgz: Fixed /usr/X11 symlink. Backup any old /usr/X11R6 and create an empty /usr/X11R6 (though there should already be one made by aaa_base and populated with backwards compatibility symlinks). A renaming of this package to "aaa_x11" is under consideration... x/xf86-video-ati-6.6.191-i486-1.tgz: Upgraded to xf86-video-ati-6.6.191. x/xorg-server-1.2.99.905-i486-1.tgz: Upgraded to xorg-server-1.2.99.905. x/xorg-server-xdmx-1.2.99.905-i486-1.tgz: Upgraded to xorg-server-1.2.99.905. x/xorg-server-xnest-1.2.99.905-i486-1.tgz: Upgraded to xorg-server-1.2.99.905. x/xorg-server-xvfb-1.2.99.905-i486-1.tgz: Upgraded to xorg-server-1.2.99.905. xap/audacious-1.3.2-i486-1.tgz: Upgraded to audacious-1.3.2. xap/audacious-plugins-1.3.2-i486-1.tgz: Upgraded to audacious-plugins-1.3.2. isolinux/initrd.img: Switch back to ash to see if this has any bearing on "currupt package" install failures on SMP machines. +--------------------------+ Thu Apr 5 14:33:11 CDT 2007 ap/dvd+rw-tools-7.0-i486-1.tgz: Upgraded to dvd+rw-tools-7.0, needed by k3b-1.0. Thanks to the many who pointed this out. +--------------------------+ Tue Apr 3 15:57:41 CDT 2007 a/aaa_base-11.1.0-noarch-3.tgz: Removed /usr/etc directory. a/cups-1.2.10-i486-1.tgz: Upgraded to cups-1.2.10. a/etc-11.1-noarch-2.tgz: Removed /usr/etc/printcap symlink. I don't think anything has used this in years, but let me know if something still wants it. a/file-4.20-i486-1.tgz: Upgraded to file-4.20. This fixes a heap overflow that could allow code to be executed as the user running file (note that there are many scenarios where file might be used automatically, such as in virus scanners or spam filters). For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1536 (* Security fix *) a/sysvinit-2.86-i486-3.tgz: In functions, change usleep calls to sleep calls. a/tcsh-6.15.00-i486-1.tgz: Upgraded to tcsh-6.15.00. ap/espgs-8.15.4-i486-1.tgz: Upgraded to espgs-8.15.4. ap/zsh-4.3.2-i486-1.tgz: Upgraded to zsh-4.3.2. d/gdb-6.6-i486-2.tgz: Recompiled against new libexpat. Thanks to Giacomo Lozito for noticing this last link to the past. d/m4-1.4.9-i486-1.tgz: Upgraded to m4-1.4.9. kde/kdelibs-3.5.6-i486-3.tgz: Recompiled with a patch to kjs. Changed --sysconfdir from /usr/etc to /etc/X11. Thanks to Giacomo Lozito for the heads-up on this one as well. kde/kdegraphics-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdesdk-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdeedu-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdemultimedia-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/amarok-1.4.5-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdebindings-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdegames-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdetoys-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdebase-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdeaccessibility-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdewebdev-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdepim-3.5.6-i486-3.tgz: Patched to update timezone information for Kmail. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdenetwork-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdevelop-3.4.0-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdeartwork-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdeadmin-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdeaddons-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/kdeutils-3.5.6-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. kde/koffice-1.6.2-i486-3.tgz: Recompiled. Changed --sysconfdir from /usr/etc to /etc/X11. l/arts-1.5.6-i486-3.tgz: Recompiled. l/libmikmod-3.1.11a-i486-2.tgz: Removed. There's better libmikmod support in audacious-plugins, and after XMMS's removal nothing in Slackware was using this library any longer. l/qt-3.3.8-i486-3.tgz: Patched an issue where the Qt UTF 8 decoder may in some instances fail to reject overlong sequences, possibly allowing "/../" path injection or XSS errors. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0242 (* Security fix *) Also, restored /usr/lib/qt/lib to /etc/ld.so.conf fixing "make xconfig" in the kernel. Thanks to all those who reported this issue. l/slang-2.0.7-i486-1.tgz: Upgraded to slang-2.0.7, moved --sysconfig to /etc. l/svgalib-1.9.25_2.6.18.8_smp-i486-2.tgz: Changed to slacktrack for build method, as the SlackBuild method was embedding some incorrect paths. n/openldap-client-2.3.32-i486-1.tgz: Upgraded to openldap-2.3.32 client libs. n/openssh-4.6p1-i486-1.tgz: Upgraded to openssh-4.6p1. Changed rc.sshd slightly to avoid the potential to be disconnected from a remote box without sshd being restarted when using "sh /etc/rc.d/rc.sshd restart". Thanks to Robby Workman. x/compiz-0.5.0-i486-1.tgz: Upgraded to compiz-0.5.0. x/libX11-1.1.1-i486-3.tgz: Restored XCB support after being informed of some benchmarks that show a significant performance increase. x/libxcb-1.0-i486-2.tgz: Patched to work around the locking problem that was affecting Java and other programs. I would have preferred to hold out for a new release of libxcb, but we can see what happens with this for now. Thanks to Luigi Genoni for convincing me to try this patch. x/xf86-input-joystick-1.2.0-i486-1.tgz: Upgraded to xf86-input-joystick-1.2.0. x/xf86-video-intel-1.9.94-i486-1.tgz: Upgraded to xf86-video-intel-1.9.94. x/xf86-video-nv-2.0.1-i486-1.tgz: Upgraded to xf86-video-nv-2.0.1. x/xorg-server-1.2.99.903-i486-1.tgz: Upgraded to xorg-server-1.2.99.903. x/xorg-server-xdmx-1.2.99.903-i486-1.tgz: Upgraded to xorg-server-1.2.99.903. x/xorg-server-xnest-1.2.99.903-i486-1.tgz: Upgraded to xorg-server-1.2.99.903. x/xorg-server-xvfb-1.2.99.903-i486-1.tgz: Upgraded to xorg-server-1.2.99.903. xap/audacious-plugins-1.3.1-i486-2.tgz: Recompiled using --enable-chardet. xap/audacious-1.3.1-i486-2.tgz: Recompiled using --enable-chardet instead of the incorrect --enable-charset. xap/gqview-2.1.5-i486-2.tgz: Fixed non-Slackware-compliant slack-desc: (not 11 info lines, missing editing instructions/ruler, "GQview" improperly capitalized, top line should have the Slackware package name followed by the (description), and "empty" lines shouldn't have whitespace after the ":". Thanks to Selkfoster for pointing out the first of these minor issues. xap/pan-0.126-i486-1.tgz: Upgraded to pan-0.126. xap/x3270-3.3.5-i486-1.tgz: Upgraded to x3270-3.3.5. Moved config file from /usr/etc/x3270/ to /etc/X11/x3270/ and added config() installation. extra/k3b/k3b-1.0-i486-1.tgz: Upgraded to k3b-1.0. extra/k3b/k3b-i18n-1.0-noarch-1.tgz: Upgraded to k3b-i18n-1.0. extra/ktorrent/ktorrent-2.1.3-i486-1.tgz: Upgraded to ktorrent-2.1.3. A directory traversal vulnerability in torrent.cpp in versions < 2.1.2 may allow remote attackers to overwrite the ktorrent user's files. A bug in chunkcounter.cpp in versions < 2.1.2 allows remote attackers to crash ktorrent and cause heap corruption by the use of an invalid idx value. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1384 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1385 (* Security fix *) +--------------------------+ Mon Mar 26 20:58:57 CDT 2007 a/sysvinit-scripts-1.2-noarch-2.tgz: Added an '&&' in the /tmp cleanup section to avoid an (unlikely) catastrophe. Thanks to J. Flushed out a few more X11R6 paths (and I know there are more...) x/compiz-0.3.6-i486-2.tgz: Recompiled with KDE and SVG support. This was suggested by many and added to the configure options, and then I forgot to recompile. Sorry about that. Also, I'm really not sure if this requires the Xgl server (which isn't, to my knowledge, yet in a xorg-server tarball release). Just starting to get my feet wet with this compositing stuff. :-) x/xf86-video-nv-1.99.1-i486-1.tgz: Dropped back from 2.0.0 after numerous reports of this update causing X to hang with a black screen at start. I'd hoped this driver would get my recent onboard chipset working, but no go. Didn't get the black-screen-hang though -- instead it was the same as before. The top half of the desktop stretched to fill the screen... xap/mozilla-firefox-2.0.0.3-i686-1.tgz: Upgraded to mozilla-firefox-2.0.0.3. This upgrade fixes several possible security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox NOTE: If a security issue affects *only* -current, the ChangeLog may be the only place an announcement is made. Just a friendly heads-up, though in this case you'll be seeing updates and an advisory due to Firefox in 11.0. (* Security fix *) +--------------------------+ Sat Mar 24 18:57:38 CDT 2007 d/pmake-1.111-i486-3.tgz: Patched util.c to get pmake to compile again. As nothing was changed but a chmod in the build script, this one is a bit puzzling, but it's working again. Thanks to Jerome Pinot for noticing the main binary had vanished from the package. :-) x/xf86-video-intel-1.9.91-i486-1.tgz: Dropped back to .91, as .92 needs a function that hasn't shown up yet (might be in some CVS HEAD) and thus doesn't work. Hopefully 93 will. usb-and-pxe-installers/: Upgraded to Eric Hameleers' latest versions of these installers that include the recent (c)fdisk fixes from the last batch of updates. +--------------------------+ Sat Mar 24 01:32:30 CDT 2007 a/bash-3.2.015-i486-1.tgz: Upgraded