diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2024-03-23 19:34:02 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2024-03-23 21:19:32 +0100 |
commit | 1e89414bae261894eb2b0621fc35d08d66039848 (patch) | |
tree | f7797579258f0385103130877b0f1c382b639af1 /ChangeLog.rss | |
parent | c0b9cd429a0d585444d754eef67f8366a1ef9189 (diff) | |
download | current-1e89414bae261894eb2b0621fc35d08d66039848.tar.gz current-1e89414bae261894eb2b0621fc35d08d66039848.tar.xz |
Sat Mar 23 19:34:02 UTC 202420240323193402
ap/vim-9.1.0199-x86_64-1.txz: Upgraded.
Dropped python2 support. Thanks to Audrius Kažukauskas.
l/duktape-2.7.0-x86_64-1.txz: Added.
Needed by polkit.
l/gjs-1.80.1-x86_64-1.txz: Upgraded.
l/libdeflate-1.20-x86_64-1.txz: Upgraded.
l/mozjs102-102.15.1esr-x86_64-2.txz: Removed.
l/mozjs115-115.9.1esr-x86_64-1.txz: Upgraded.
l/polkit-123-x86_64-2.txz: Rebuilt.
Use duktape instead of mozjs102 as the JavaScript engine.
x/iceauth-1.0.10-x86_64-2.txz: Rebuilt.
It's never too early to build with --enable-year2038. Thanks to bigbadaboum.
xap/geeqie-2.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-115.9.1esr-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
An attacker was able to inject an event handler into a privileged object
that would allow arbitrary JavaScript execution in the parent process.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.9.1esr/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-16/
https://www.cve.org/CVERecord?id=CVE-2024-29944
(* Security fix *)
xap/vim-gvim-9.1.0199-x86_64-1.txz: Upgraded.
Dropped python2 support. Thanks to Audrius Kažukauskas.
Diffstat (limited to 'ChangeLog.rss')
-rw-r--r-- | ChangeLog.rss | 38 |
1 files changed, 36 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss index 85782002f..b6c923ea2 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,10 +11,44 @@ <description>Tracking Slackware development in git.</description> <language>en-us</language> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> - <pubDate>Fri, 22 Mar 2024 22:57:06 GMT</pubDate> - <lastBuildDate>Fri, 22 Mar 2024 23:29:50 GMT</lastBuildDate> + <pubDate>Sat, 23 Mar 2024 19:34:02 GMT</pubDate> + <lastBuildDate>Sat, 23 Mar 2024 20:19:26 GMT</lastBuildDate> <generator>maintain_current_git.sh v 1.17</generator> <item> + <title>Sat, 23 Mar 2024 19:34:02 GMT</title> + <pubDate>Sat, 23 Mar 2024 19:34:02 GMT</pubDate> + <link>https://git.slackware.nl/current/tag/?h=20240323193402</link> + <guid isPermaLink="false">20240323193402</guid> + <description> + <![CDATA[<pre> +ap/vim-9.1.0199-x86_64-1.txz: Upgraded. + Dropped python2 support. Thanks to Audrius Kažukauskas. +l/duktape-2.7.0-x86_64-1.txz: Added. + Needed by polkit. +l/gjs-1.80.1-x86_64-1.txz: Upgraded. +l/libdeflate-1.20-x86_64-1.txz: Upgraded. +l/mozjs102-102.15.1esr-x86_64-2.txz: Removed. +l/mozjs115-115.9.1esr-x86_64-1.txz: Upgraded. +l/polkit-123-x86_64-2.txz: Rebuilt. + Use duktape instead of mozjs102 as the JavaScript engine. +x/iceauth-1.0.10-x86_64-2.txz: Rebuilt. + It's never too early to build with --enable-year2038. Thanks to bigbadaboum. +xap/geeqie-2.4-x86_64-1.txz: Upgraded. +xap/mozilla-firefox-115.9.1esr-x86_64-1.txz: Upgraded. + This update fixes a critical security issue: + An attacker was able to inject an event handler into a privileged object + that would allow arbitrary JavaScript execution in the parent process. + For more information, see: + https://www.mozilla.org/en-US/firefox/115.9.1esr/releasenotes/ + https://www.mozilla.org/security/advisories/mfsa2024-16/ + https://www.cve.org/CVERecord?id=CVE-2024-29944 + (* Security fix *) +xap/vim-gvim-9.1.0199-x86_64-1.txz: Upgraded. + Dropped python2 support. Thanks to Audrius Kažukauskas. + </pre>]]> + </description> + </item> + <item> <title>Fri, 22 Mar 2024 22:57:06 GMT</title> <pubDate>Fri, 22 Mar 2024 22:57:06 GMT</pubDate> <link>https://git.slackware.nl/current/tag/?h=20240322225706</link> |