[blfs-book] BLFS Package Currency Check - 2018-08-09 04:45:01 GMT

[bdubbs--- via blfs-book]

BLFS PackageBLFS Version  Latest  Ticket
chapter 04: cryptsetup  2.0.32.0.4#10991
chapter 04: stunnel 5.46 5.48 #10894
chapter 05: btrfs-progs 4.16.1   4.17.1   #10870
chapter 05: sshfs   3.3.23.4.0#10903
chapter 05: xfsprogs4.16.1   4.17.0   #10904
chapter 06: mousepad0.4.00#10834
chapter 09: gsl 2.4  2.5  #10871
chapter 09: icu4c   61_1 62_1 #10884
chapter 09: libatomic_ops   7.6.47.6.6#10993
chapter 09: libblockdev 2.17 2.18 #10885
chapter 09: libbytesize 1.3  1.4  #10987
chapter 09: libgsf  1.14.43  1.14.44  
chapter 09: libxkbcommon0.8.00.8.2#10990
chapter 09: node.js 9.11.1   9.11.2   #10867
chapter 09: talloc  2.1.13   2.1.14   #10942
chapter 09: xapian-core 1.4.51.4.7#10910
chapter 09: yaml0.1.70.2.1#10923
chapter 10: babl0.1.52   0.1.54   #10969
chapter 10: gegl0.4.40.4.6#10970
chapter 10: harfbuzz1.8.41.8.6#10982
chapter 10: libjpeg-turbo   1.5.32.0.0#10576
chapter 10: librsvg 2.42.2   2.42.6   #10477
chapter 10: opencv  3.4.13.4.2#10919
chapter 10: opencv_contrib  3.4.13.4.2#10919
chapter 10: poppler 0.65.0   0.67.0   #10883
chapter 10: qpdf8.0.28.1.0#10895
chapter 11: ImageMagick66.9.9-35 6.9.10-9 #7859
chapter 11: ImageMagick77.0.7-23 7.0.8-9  #7859
chapter 11: highlight   3.43 3.44 #10972
chapter 11: ibus1.5.18   1.5.19   
chapter 11: shared-mime-info1.9  1.10 #10905
chapter 12: ModemManager1.6.12   1.8.0#10840
chapter 12: accountsservice 0.6.46   0.6.50   #10705
chapter 12: bluez   5.49 5.50 #10837
chapter 12: dbus1.12.8   1.12.10  #10988
chapter 12: fcron   3.2.10
chapter 12: sysstat 11.6.3   11.6.5   #10800
chapter 12: systemd 238  239  #10893
chapter 12: udisks2 2.7.62.7.7#10917
chapter 12: unzip   60   0
chapter 12: zip 30   0#4911
chapter 13: apache-ant  1.10.3   1.10.5   #10896
chapter 13: gcc 7.3.08.2.0#10730
chapter 13: gdb 8.1  8.1.1#10981
chapter 13: git 2.17.1   2.18.0   #10886
chapter 13: jdk 10.0.1+1010.0.2+13#10959
chapter 13: llvm6.0.06.0.1#10897
chapter 13: lua 5.3.45.3.5#10935
chapter 13: lxml4.2.14.2.4#10892
chapter 13: mercurial   4.6  4.7  #10856
chapter 13: rustc   1.25.0   1.28.0   #9168
chapter 13: vala0.40.3   0.40.8   #10668
chapter 14: NetworkManager  1.10.8   1.12.2   #10876
chapter 14: wireshark   2.6.12.6.2#10962
chapter 17: alpine  2.21 2.21.999 #10188
chapter 17: geoclue 2.4.10   2.4.11   #10977
chapter 17: libpcap 1.8.11.9.0#10973
chapter 20: db  18.1.25  0#10913
chapter 20: dovecot 2.3.22.3.2.1  #10933
chapter 20: mariadb 10.3.7   10.3.8   #10913
chapter 20: unbound 1.7.11.7.3#10865
chapter 24: intel-vaapi-driver  2.1.02.2.0#10944
chapter 24: libva   2.1.02.2.0#10944
chapter 24: xorg-server 1.20.0   1.20.1   #10992
chapter 25: gtksourcev

[blfs-book] r20277 - in trunk/BOOK: general/genutils introduction/welcome

[renodr--- via blfs-book]

Author: renodr
Date: Wed Aug  8 17:32:36 2018
New Revision: 20277

Log:
Fix sharutils to build with glibc-2.28

Modified:
   trunk/BOOK/general/genutils/sharutils.xml
   trunk/BOOK/introduction/welcome/changelog.xml

Modified: trunk/BOOK/general/genutils/sharutils.xml
==
--- trunk/BOOK/general/genutils/sharutils.xml   Wed Aug  8 17:15:25 2018
(r20276)
+++ trunk/BOOK/general/genutils/sharutils.xml   Wed Aug  8 17:32:36 2018
(r20277)
@@ -83,7 +83,9 @@
   the following commands:
 
 
-./configure --prefix=/usr &&
+sed -i 's/IO_ftrylockfile/IO_EOF_SEEN/' lib/*.c &&
+echo "#define _IO_IN_BACKUP 0x100" >> lib/stdio-impl.h &&
+./configure --prefix=/usr &&
 make
 
 

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Wed Aug  8 17:15:25 
2018(r20276)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Wed Aug  8 17:32:36 
2018(r20277)
@@ -52,6 +52,10 @@
   [renodr] - Update to unrar-5.6.5. Fixes
   #10900.
 
+
+  [renodr] - Implement a build fix for sharutils related to
+  glibc-2.28.
+
   
 
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #10900: unrar-5.6.5

[BLFS Trac via blfs-book]

#10900: unrar-5.6.5
-+-
 Reporter:  bdubbs   |   Owner:  renodr
 Type:  enhancement  |  Status:  closed
 Priority:  normal   |   Milestone:  8.3
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-
Changes (by renodr):

 * status:  assigned => closed
 * resolution:   => fixed


Comment:

 Fixed at r20276

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r20276 - in trunk/BOOK: . general/sysutils introduction/welcome

[renodr--- via blfs-book]

Author: renodr
Date: Wed Aug  8 17:15:25 2018
New Revision: 20276

Log:
Update to unrar-5.6.5

Modified:
   trunk/BOOK/general/sysutils/unrar.xml
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/packages.ent

Modified: trunk/BOOK/general/sysutils/unrar.xml
==
--- trunk/BOOK/general/sysutils/unrar.xml   Wed Aug  8 13:37:39 2018
(r20275)
+++ trunk/BOOK/general/sysutils/unrar.xml   Wed Aug  8 17:15:25 2018
(r20276)
@@ -6,9 +6,9 @@
 
   http://www.rarlab.com/rar/unrarsrc-&unrar-version;.tar.gz";>
   
-  
+  
   
-  
+  
   
 ]>
 

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Wed Aug  8 13:37:39 
2018(r20275)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Wed Aug  8 17:15:25 
2018(r20276)
@@ -48,6 +48,10 @@
   [renodr] - Add patch to facilitate building sg3_utils with
   glibc-2.28.
 
+
+  [renodr] - Update to unrar-5.6.5. Fixes
+  #10900.
+
   
 
 

Modified: trunk/BOOK/packages.ent
==
--- trunk/BOOK/packages.ent Wed Aug  8 13:37:39 2018(r20275)
+++ trunk/BOOK/packages.ent Wed Aug  8 17:15:25 2018(r20276)
@@ -293,7 +293,7 @@
 
 
 
-
+
 
 
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #10900: unrar-5.6.5

[BLFS Trac via blfs-book]

#10900: unrar-5.6.5
-+---
 Reporter:  bdubbs   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  8.3
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by renodr):

 * owner:  blfs-book => renodr
 * status:  new => assigned


Comment:

 Unfortunately, there is no way to tell what changed - at least not easily.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r20275 - in trunk/BOOK: . general/genutils general/sysutils introduction/welcome

[renodr--- via blfs-book]

Author: renodr
Date: Wed Aug  8 13:37:39 2018
New Revision: 20275

Log:
Add patch to fix sg3_utils and glibc-2.28

Modified:
   trunk/BOOK/general.ent
   trunk/BOOK/general/genutils/unixodbc.xml
   trunk/BOOK/general/sysutils/sg3_utils.xml
   trunk/BOOK/introduction/welcome/changelog.xml

Modified: trunk/BOOK/general.ent
==
--- trunk/BOOK/general.ent  Wed Aug  8 11:56:24 2018(r20274)
+++ trunk/BOOK/general.ent  Wed Aug  8 13:37:39 2018(r20275)
@@ -1,12 +1,12 @@
 
 
-   
+   

 
 
 
 
-
+
  
   
   

Modified: trunk/BOOK/general/genutils/unixodbc.xml
==
--- trunk/BOOK/general/genutils/unixodbc.xmlWed Aug  8 11:56:24 2018
(r20274)
+++ trunk/BOOK/general/genutils/unixodbc.xmlWed Aug  8 13:37:39 2018
(r20275)
@@ -212,7 +212,7 @@
 dltest
 
   
-is a utility used to check a share library to see if it can be
+is a utility used to check a shared library to see if it can be
 loaded and if a given symbol exists in it.
   
   

Modified: trunk/BOOK/general/sysutils/sg3_utils.xml
==
--- trunk/BOOK/general/sysutils/sg3_utils.xml   Wed Aug  8 11:56:24 2018
(r20274)
+++ trunk/BOOK/general/sysutils/sg3_utils.xml   Wed Aug  8 13:37:39 2018
(r20275)
@@ -74,6 +74,16 @@
   
 
 
+Additional Downloads
+
+  
+
+  Required patch:
+  
+
+  
+
+
 User Notes:
   
 
@@ -87,7 +97,8 @@
   commands:
 
 
-./configure --prefix=/usr --disable-static &&
+patch -Np1 -i 
../sg3_utils-&sg3_utils-version;-glibc_2.28-fixes-1.patch&&
+./configure --prefix=/usr --disable-static &&
 make
 
 

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Wed Aug  8 11:56:24 
2018(r20274)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Wed Aug  8 13:37:39 
2018(r20275)
@@ -42,6 +42,16 @@
 
 -->
 
+  August 8th, 2018
+  
+
+  [renodr] - Add patch to facilitate building sg3_utils with
+  glibc-2.28.
+
+  
+
+
+
   August 6th, 2018
   
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #10994: Rebase wpa_supplicant security patch to include new vulnerability fix

[BLFS Trac via blfs-book]

#10994: Rebase wpa_supplicant security patch to include new vulnerability fix
+---
 Reporter:  renodr  |  Owner:  blfs-book
 Type:  task| Status:  new
 Priority:  high|  Milestone:  8.3
Component:  BOOK|Version:  SVN
 Severity:  normal  |   Keywords:
+---
 From the oss-security mailing list:


 {{{
 Published: August 8, 2018
 Identifiers:
 - CVE-2018-14526
 Latest version available from: https://w1.fi/security/2018-1/

 Vulnerability

 A vulnerability was found in how wpa_supplicant processes EAPOL-Key
 frames. It is possible for an attacker to modify the frame in a way that
 makes wpa_supplicant decrypt the Key Data field without requiring a
 valid MIC value in the frame, i.e., without the frame being
 authenticated. This has a potential issue in the case where WPA2/RSN
 style of EAPOL-Key construction is used with TKIP negotiated as the
 pairwise cipher. It should be noted that WPA2 is not supposed to be used
 with TKIP as the pairwise cipher. Instead, CCMP is expected to be used
 and with that pairwise cipher, this vulnerability is not applicable in
 practice.

 When TKIP is negotiated as the pairwise cipher, the EAPOL-Key Key Data
 field is encrypted using RC4. This vulnerability allows unauthenticated
 EAPOL-Key frames to be processed and due to the RC4 design, this makes
 it possible for an attacker to modify the plaintext version of the Key
 Data field with bitwise XOR operations without knowing the contents.
 This can be used to cause a denial of service attack by modifying
 GTK/IGTK on the station (without the attacker learning any of the keys)
 which would prevent the station from accepting received group-addressed
 frames. Furthermore, this might be abused by making wpa_supplicant act
 as a decryption oracle to try to recover some of the Key Data payload
 (GTK/IGTK) to get knowledge of the group encryption keys.

 Full recovery of the group encryption keys requires multiple attempts
 (128 connection attempts per octet) and each attempt results in
 disconnection due to a failure to complete the 4-way handshake. These
 failures can result in the AP/network getting disabled temporarily or
 even permanently (requiring user action to re-enable) which may make it
 impractical to perform the attack to recover the keys before the AP has
 already changes the group keys. By default, wpa_supplicant is enforcing
 at minimum a ten second wait time between each failed connection
 attempt, i.e., over 20 minutes waiting to recover each octet while
 hostapd AP implementation uses 10 minute default for GTK rekeying when
 using TKIP. With such timing behavior, practical attack would need large
 number of impacted stations to be trying to connect to the same AP to be
 able to recover sufficient information from the GTK to be able to
 determine the key before it gets changed.


 Vulnerable versions/configurations

 All wpa_supplicant versions.


 Acknowledgments

 Thanks to Mathy Vanhoef of the imec-DistriNet research group of KU
 Leuven for discovering and reporting this issue.


 Possible mitigation steps

 - Remove TKIP as an allowed pairwise cipher in RSN/WPA2 networks. This
   can be done also on the AP side.

 - Merge the following commits to wpa_supplicant and rebuild:

   WPA: Ignore unauthenticated encrypted EAPOL-Key data

   This patch is available from https://w1.fi/security/2018-1/

 - Update to wpa_supplicant v2.7 or newer, once available
 }}}

 We should probably rebase the patch to include
 [https://w1.fi/security/2018-1/]

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r20274 - trunk/BOOK/networking/netprogs

[renodr--- via blfs-book]

Author: renodr
Date: Wed Aug  8 11:56:24 2018
New Revision: 20274

Log:
Fix Perl Modules URLs in wget

Modified:
   trunk/BOOK/networking/netprogs/wget.xml

Modified: trunk/BOOK/networking/netprogs/wget.xml
==
--- trunk/BOOK/networking/netprogs/wget.xml Mon Aug  6 12:10:02 2018
(r20273)
+++ trunk/BOOK/networking/netprogs/wget.xml Wed Aug  8 11:56:24 2018
(r20274)
@@ -87,8 +87,8 @@
   ,
(built with ssl; for the test suite),
(for the test suite),
-  http://search.cpan.org/~behroozi/IO-Socket-SSL/";>IO::Socket::SSL,
-  http://search.cpan.org/~gaas/HTTP-Daemon/";>HTTP::Daemon
+  https://metacpan.org/release/BEHROOZI/IO-Socket-SSL-0.97";>IO::Socket::SSL,
+  https://metacpan.org/release/HTTP-Daemon";>HTTP::Daemon
   (both required for the test suite), and
   https://github.com/rockdaboot/libpsl/";>libpsl
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #10458: libreoffice-6.1.0

[BLFS Trac via blfs-book]

#10458: libreoffice-6.1.0
-+
 Reporter:  bdubbs@… |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.3
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

Comment (by ken@…):

 Release notes at [https://wiki.documentfoundation.org/ReleaseNotes/6.1]

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #10458: libreoffice-6.1.0 (was: libreoffice-6.0.2.1 (hold until 6.0.4.x))

[BLFS Trac via blfs-book]

#10458: libreoffice-6.1.0
-+
 Reporter:  bdubbs@… |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.3
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+
Changes (by ken@…):

 * milestone:  hold => 8.3


Old description:

> New point version.

New description:

 New minor version - was: New point version.

 Release announcement of 6.1.0 today, available version is 6.1.0.3

--

Comment:

 This was 6.0.2 and "hold until 6.0.4", 6.1.0.3 looks like a "proper"
 release, moving to 8.3 target.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #10993: libatomic_ops-7.6.6

[BLFS Trac via blfs-book]

#10993: libatomic_ops-7.6.6
-+---
 Reporter:  renodr   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.3
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] Files in BLFS svn missing on osuosl

[bdubbs--- via blfs-book]

Missing qemu-2.12.1.tar.bz2
Missing asymptote-2.47.src.tgz
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page