[FYI] slackware 12.0 update package log

sxzzsf

Mon Apr 21 16:47:32 CDT 2008
We have now reached the Slackware 12.1 RC2 milestone. :-) We're beyond
updating packages or fixing minor cosmetic bugs at this point (actually, we
had hoped to be past that with RC1, but there were still items in need of
attention). What we have here now has proven to be stable for our testers,
so unless some real showstoppers are found we'll be releasing this as Slackware
12.1-final soon.
a/glibc-solibs-2.7-i486-10.tgz: Recompiled against Linux 2.6.24.5 headers.
a/glibc-zoneinfo-2.7-noarch-10.tgz: Rebuilt.
a/kernel-generic-2.6.24.5-i486-1.tgz:
       Upgraded to Linux 2.6.24.5 uniprocessor generic.s (requires initrd) kernel.
a/kernel-generic-smp-2.6.24.5_smp-i686-1.tgz:
       Upgraded to Linux 2.6.24.5 SMP gensmp.s (requires initrd) kernel.
a/kernel-huge-2.6.24.5-i486-1.tgz:
       Upgraded to Linux 2.6.24.5 uniprocessor huge.s (full-featured) kernel.
a/kernel-huge-smp-2.6.24.5_smp-i686-1.tgz:
       Upgraded to Linux 2.6.24.5 SMP hugesmp.s (full-featured) kernel.
a/kernel-modules-2.6.24.5-i486-1.tgz
       Upgraded to Linux 2.6.24.5 uniprocessor kernel modules.
a/kernel-modules-smp-2.6.24.5_smp-i686-1.tgz
       Upgraded to Linux 2.6.24.5 SMP kernel modules.
a/pkgtools-12.1.0-noarch-7.tgz: Removed obsolete modem setup script (any
       /dev/modem symlink would be wiped out by udev anyway).
ap/lm_sensors-2.10.6-i486-1.tgz: Upgraded to lm_sensors-2.10.6.
d/kernel-headers-2.6.24.5_smp-x86-1.tgz:
       Upgraded to Linux 2.6.24.5 SMP kernel headers.
a/mkinitrd-1.3.2-i486-2.tgz: Updated the version numbers in README.initrd
       and manpage.
k/kernel-source-2.6.24.5_smp-noarch-1.tgz
       Upgraded to Linux 2.6.24.5 SMP kernel source package.
l/glibc-2.7-i486-10.tgz: Recompiled against Linux 2.6.24.5 headers.
l/glibc-i18n-2.7-noarch-10.tgz: Rebuilt.
l/glibc-profile-2.7-i486-10.tgz: Recompiled against Linux 2.6.24.5 headers.
l/jre-6u6-i586-2.tgz: Adjusted installation directory to avoid removing files
       from kdebindings. Thanks to Kris Karas for pointing out this collision.
l/svgalib_helper-1.9.25_2.6.24.5-i486-1.tgz: Recompiled for Linux 2.6.24.5.
n/mcabber-0.9.7-i486-1.tgz: Upgraded to mcabber-0.9.7.
xap/xine-lib-1.1.11.1-i686-3.tgz: Recompiled, with --without-speex (we didn't
       ship the speex library in Slackware anyway, but for reference this issue
       would be CVE-2008-1686), and with --disable-nosefart (the recently reported
       as insecurely demuxed NSF format).
       As before in -2, this package fixes the two regressions mentioned in the
       release notes for xine-lib-1.1.12:
       http://sourceforge.net/project/s ... 5&group_id=9655
       Moving to xine-lib-1.1.12 right now doesn't seem prudent for RC2, as the
       diff between 1.1.11.1 and 1.1.12 is many thousands of lines long.
       (* Security fix *)
extra/brltty/brltty-3.9-i486-1.tgz: Upgraded to brltty-3.9.
extra/jdk-6/jdk-6u6-i586-2.tgz: Adjusted installation directory to avoid
       removing files from kdebindings. Thanks to Kris Karas.
isolinux/initrd.img: Replaced kernel modules with 2.6.24.5 versions.
kernels/huge.s/*: Upgraded to huge.s 2.6.24.5 kernel.
kernels/hugesmp.s/*: Upgraded to hugesmp.s 2.6.24.5 kernel.
kernels/speakup.s/*: Upgraded to speakup.s 2.6.24.5 kernel.
usb-and-pxe-installers/: Replaced kernel modules with 2.6.24.5 versions.
Thanks to Amritpal Bath for writing a new README_RAID document explaining
how to install Slackware using various RAID levels. :-)

sxzzsf

Wed Apr 23 19:42:28 CDT 2008
Not quite yet, but it's getting closer.
a/aaa_base-12.1.0-noarch-2.tgz: Updated the initial emails.
l/jre-6u6-i586-3.tgz: Adjusted the installation script to fix an issue causing
       broken symlinks in /. Thanks to Corrado "Conraid" Franco for the report.
n/wireless-tools-29-i486-3.tgz: Increased the sleep time after bringing up an
       interface to 3 seconds, since some of the new drivers need the additional
       time to fully initialize. Thanks to bstrik on LQ.
extra/jdk-6/jdk-6u6-i586-3.tgz: Adjusted the installation script to fix an
       issue causing broken symlinks in /.
       Thanks to Corrado "Conraid" Franco for the report.
isolinux/initrd.img: Fixed (hopefully) the last remaining "12.0" version
       number (this one found in /etc/issue).
       Thanks to Franck Barbenoire for spotting it.
usb-and-pxe-installers/: Fixed the "12.0" version number in usbboot.img.
+--------------------------+

sxzzsf

Sat Apr 26 16:38:32 CDT 2008
x/pixman-0.10.0-i486-4.tgz: Restored MMX optimizations, which should fix the
       issues some machines were having with slow Flash playback.
       Thanks very much to Zielony for getting me to take a closer look at this. :-)
+--------------------------+
Fri Apr 25 23:09:23 CDT 2008
kde/kdelibs-3.5.9-i486-4.tgz: Patched to fix a security problem.
       From the KDE advisory: "If start_kdeinit is installed as setuid root, a
       local user might be able to send unix signals to other processes, cause
       a denial of service or even possibly execute arbitrary code."
       This issue affects KDE 3.5.5 through KDE 3.5.9.
       We recommend upgrading to the new kdelibs package as soon as possible.
       For more information, see:
       http://www.kde.org/info/security/advisory-20080426-2.txt
       http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1671
       (* Security fix *)
extra/ktorrent/ktorrent-2.2.6-i486-1.tgz: Upgraded to ktorrent-2.2.6.
isolinux/initrd.img: Patched /sbin/probe to look for formatted swap on RAID.
usb-and-pxe-installers/: Patched /sbin/probe in usbboot.img to look for
       formatted swap on RAID.
+--------------------------+

sxzzsf

Mon Apr 28 23:43:55 CDT 2008
We'll call this Slackware 12.1 RC3, and freeze the tree for anything that
isn't critical.  Things seem very stable, so it's probably a good idea to
save any further upgrades and additions until -current restarts.
a/cups-1.3.7-i486-2.tgz:  Applied patch str2790 to fix crash bugs in the PNG
  image filter.  The issues are not believed to be capable of either a DoS (at
  worst, it simply crashes the filter processing the current job and does not
  crash the scheduler daemon, which just moves on to the next job in the print
  queue), nor arbitrary code execution (data from the image is never stored in
  the affected tile array).  Still, it seems to be worth fixing here just in
  case.  The CUPS bug report may be found here:
    http://www.cups.org/str.php?L2790
ap/mysql-5.0.51b-i486-1.tgz:  Upgraded to mysql-5.0.51b (which appears to be
  nothing more than a version bump...)
l/imlib-1.9.15-i486-3.tgz:  Patched to fix rendering issues on Intel and
  possibly other graphics chipsets.  Thanks to Iain Paton.
l/libmtp-0.2.6.1-i486-1.tgz:  Upgraded to libmtp-0.2.6.1.  The udev rules are
  now sed processed during build.  Thanks much to Joerg Germeroth.  :-)
l/libpng-1.2.27-i486-1.tgz:
  Upgraded to libpng-1.2.27.
  This fixes various bugs, the most important of which have to do with the
  handling of unknown chunks containing zero-length data.  Processing a PNG
  image that contains these could cause the application using libpng to crash
  (possibly resulting in a denial of service), could potentially expose the
  contents of uninitialized memory, or could cause the execution of arbitrary
  code as the user running libpng (though it would probably be quite difficult
  to cause the execution of attacker-chosen code).  We recommend upgrading the
  package as soon as possible.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1382
    ftp://ftp.simplesystems.org/pub/ ... g-1.2.27-README.txt
  (* Security fix *)
x/xf86-input-joystick-1.3.2-i486-1.tgz:  Upgraded to xf86-input-joystick-1.3.2.
x/xf86-video-radeonhd-1.2.1-i486-1.tgz:  Upgraded to xf86-video-radeonhd-1.2.1.
x/xf86-video-vmware-10.16.1-i486-1.tgz:  Upgraded to xf86-video-vmware-10.16.1.
isolinux/initrd.img:  Fixed minimum RAM amount in /etc/issue, and made some
  edits to other documentation within the installer.
usb-and-pxe-installers/:  In usbboot.img, fixed minimum RAM amount in
  /etc/issue, and made some edits to other documentation within the installer.
+--------------------------+

kangjs79

Thu May  1 13:36:34 CDT 2008
Slackware 12.1 is released as -stable.  :-)  Again, huge thanks to everybody
who pitched in and helped with bug reports, patches, testing, suggestions,
other comments, and everything else.  Without this valuable input, Slackware
would be nowhere near what it is today.  Special thanks to the CREW, to the
people developing and testing for slackbuilds.org (where many of Slackware's
future additions are first built and tested), and to everyone on
linuxquestions.org, various #slackware or ##slackware IRC channels, other
Slackware related web sites, and other places where the community shares their
needs and concerns with the team.  On behalf of everyone here, thanks.
  We think you'll enjoy this new release, and hope that you'll find it to be
much more than 0.1 better than Slackware 12.0.  ;-)
Have fun!  -P.
extra/slackpkg/slackpkg-2.70.3-noarch-2.tgz:  Updated the version in the
  slackpkg script from 2.70.2 to 2.70.3.
+--------------------------+
Wed Apr 30 20:36:48 CDT 2008
12.1 RC4.  We think this should be the last one.
a/kernel-generic-2.6.24.5-i486-2.tgz:  Patched to fix a security issue in
  fs/dnotify.c.  The use of dnotify (largely replaced by inotify on 2.6.x
  systems) could lead to a local DoS, or possibly a local root hole.  We said
  we wouldn't make changes now unless something was "critical" -- and it seems
  we got what we wished for.  ;-)  This flaw will also be addressed in the
  kernels for previous releases as soon as possible.  The patch itself may be
  found in source/k/linux-2.6.24.5-CVE-2008-1375-patch/.
  For additional information (when the CVE candidate is opened), see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1375
  All the kernel packages below should also be considered security fixes.
  (* Security fix *)
a/kernel-generic-smp-2.6.24.5_smp-i686-2.tgz:  Patched and recompiled.
a/kernel-huge-2.6.24.5-i486-2.tgz:  Patched and recompiled.
a/kernel-huge-smp-2.6.24.5_smp-i686-2.tgz:  Patched and recompiled.
a/kernel-modules-2.6.24.5-i486-2.tgz:  Patched and recompiled.
a/kernel-modules-smp-2.6.24.5_smp-i686-2.tgz:  Patched and recompiled.
d/kernel-headers-2.6.24.5_smp-x86-2.tgz:  Rebuilt from a patched source tree.
k/kernel-source-2.6.24.5_smp-noarch-2.tgz:  Patched (leaving dnotify.c.orig
  for comparison and/or reverting to patch up to a newer kernel later).
l/svgalib_helper-1.9.25_2.6.24.5-i486-2.tgz:  Recompiled.
extra/linux-2.6.24.5-nosmp-sdk/:  Updated SMP to no-SMP kernel source patch.
extra/slackpkg/slackpkg-2.70.3-noarch-1.tgz:  Upgraded to
  slackpkg-2.70.3-noarch-1 (release ready).  Thanks to Piter Punk!  -
kernels/huge.s/*:  Patched and recompiled.
kernels/hugesmp.s/*:  Patched and recompiled.
kernels/speakup.s/*:  Patched and recompiled.
isolinux/initrd.img:  Rebuilt with newly compiled kernel modules.
usb-and-pxe-installers/:  Rebuilt usbboot.img with newly compiled
  kernel modules.
+--------------------------+

kangjs79

Thu May  1 13:36:34 CDT 2008
Slackware 12.1 is released as -stable.  :-)  Again, huge thanks to everybody
who pitched in and helped with bug reports, patches, testing, suggestions,
other comments, and everything else.  Without this valuable input, Slackware
would be nowhere near what it is today.  Special thanks to the CREW, to the
people developing and testing for slackbuilds.org (where many of Slackware's
future additions are first built and tested), and to everyone on
linuxquestions.org, various #slackware or ##slackware IRC channels, other
Slackware related web sites, and other places where the community shares their
needs and concerns with the team.  On behalf of everyone here, thanks.
  We think you'll enjoy this new release, and hope that you'll find it to be
much more than 0.1 better than Slackware 12.0.  ;-)
Have fun!  -P.
extra/slackpkg/slackpkg-2.70.3-noarch-2.tgz:  Updated the version in the
  slackpkg script from 2.70.2 to 2.70.3.
+--------------------------+