[blfs-book] BLFS Package Currency Check - 2020-09-19 04:45:01 GMT

2020-09-18 Thread bdubbs--- via blfs-book 
BLFS PackageBLFS Version  Latest  Ticket
chapter 04: nss 3.56 3.57 #14050
chapter 06: gedit   3.36.2   3.38.0   #14032
chapter 06: vim 8.2.1361 8.2.1709 #12241
chapter 09: firefox178.2.0   0
chapter 09: json-glib   1.4.41.6.0#14029
chapter 09: libsigc++   2.10.3   3.0.3#12483
chapter 09: nspr4.28 4.29 #14046
chapter 10: librsvg 2.48.8   2.50.0   #14029
chapter 11: ImageMagick 7.0.10-270#7859
chapter 13: Log-Log4perl1.52 1.53 #14045
chapter 13: PerlIO-utf8_strict  0.0070.008#14049
chapter 13: Pygments2.7.02.7.1#14044
chapter 13: jdk 14.0.1+7 manual   
chapter 13: pyatspi 2.36.0   2.38.0   #14029
chapter 13: pygobject3  3.36.1   3.38.0   #14029
chapter 13: rustc   1.42.0   0#9168
chapter 14: bind9   9.16.6   9.16.7   #14042
chapter 14: samba   4.12.6   4.12.7   #14047
chapter 17: glib-networking 2.64.3   2.66.0   #14029
chapter 17: libsoup 2.70.0   2.72.0   #14029
chapter 20: bind9.16.6   9.16.7   
chapter 20: db  5.3.28   manual   
chapter 25: at-spi2-atk 2.34.2   2.38.0   #14029
chapter 25: at-spi2-core2.36.1   2.38.0   #14029
chapter 25: cairo   1.17.2+f93fc72c031.16.0   #12916
chapter 25: gtksourceview4  4.6.14.8.0#14029
chapter 25: libdazzle   3.36.0   3.38.0   #14029
chapter 25: pango   1.46.1   1.46.2   #14048
chapter 25: qtwebengine 5.15.1   manual   
chapter 25: webkitgtk   2.28.4   2.30.0   #14029
chapter 26: adwaita-icon-theme  3.36.1   3.38.0   #14029
chapter 26: oxygen-icons5   5.73.0   5.74.0   #14014
chapter 29: extra-cmake-modules 5.73.0   5.74.0   #14014
chapter 32: kf5 5.73 5.74 #14014
chapter 32: kf5-apps20.08.0  20.08.1  #13990
chapter 32: plasma5 5.19.4   5.19.5   #13991
chapter 35: dconf   0.36.0   0.38.0   #14031
chapter 35: dconf-editor3.36.4   3.38.0   #14031
chapter 35: evolution-data-serve3.36.5   3.38.0   #14030
chapter 35: gdm 3.36.3   3.38.0   #14031
chapter 35: gjs 1.64.4   1.66.0   #14030
chapter 35: gnome-backgrounds   3.36.0   3.38.0   #14031
chapter 35: gnome-control-center3.36.4   3.38.0   #14031
chapter 35: gnome-desktop   3.36.6   3.38.0   #14030
chapter 35: gnome-session   3.36.0   3.38.0   #14031
chapter 35: gnome-settings-daemo3.36.1   3.38.0   #14031
chapter 35: gnome-shell 3.36.6   3.38.0   #14031
chapter 35: gnome-shell-extensio3.36.3   3.38.0   #14031
chapter 35: gnome-user-docs 3.36.6   3.38.0   #14031
chapter 35: gsettings-desktop-sc3.36.1   3.38.0   #14030
chapter 35: gvfs1.44.1   1.46.0   #14031
chapter 35: libpeas 1.26.0   1.28.0   #14030
chapter 35: mutter  3.36.6   3.38.0   #14031
chapter 35: nautilus3.36.3   3.38.0   #14031
chapter 35: vte 0.60.3   0.62.0   #14030
chapter 35: yelp3.36.0   3.38.0   #14031
chapter 35: yelp-xsl3.36.0   3.38.0   #14030
chapter 36: baobab  3.34.1   3.38.0   #14032
chapter 36: cheese  3.34.0   3.38.0   #14032
chapter 36: eog 3.36.3   3.38.0   #14032
chapter 36: evince  3.36.7   3.38.0   #14032
chapter 36: evolution   3.36.5   3.38.0   #14032
chapter 36: file-roller 3.36.3   3.38.0   #14032
chapter 36: gnome-calculator3.36.0   3.38.0   #14032
chapter 36:

[blfs-book] r23727 - trunk/scripts

2020-09-18 Thread bdubbs--- via blfs-book 
Author: bdubbs
Date: Fri Sep 18 21:09:24 2020
New Revision: 23727

Log:
Fix currency for rust and ImageMagick

Modified:
   trunk/scripts/blfs-chapter11.php
   trunk/scripts/blfs-chapter13.php
   trunk/scripts/blfs-include.php

Modified: trunk/scripts/blfs-chapter11.php
==
--- trunk/scripts/blfs-chapter11.phpFri Sep 18 14:30:13 2020(r23726)
+++ trunk/scripts/blfs-chapter11.phpFri Sep 18 21:09:24 2020(r23727)
@@ -39,6 +39,10 @@
   'match'   => '^ftp:\/\/ftp.gnome',
   'replace' => "http://ftp.gnome; ),
 
+   array( 'pkg' => 'ImageMagick',
+  'match'   => '^.*$', 
+  'replace' => "https://www.imagemagick.org/download/releases; ),
+
array( 'pkg' => 'iso-codes',
   'match'   => '^.*$', 
   'replace' => 
"https://salsa.debian.org/iso-codes-team/iso-codes/tags; ),

Modified: trunk/scripts/blfs-chapter13.php
==
--- trunk/scripts/blfs-chapter13.phpFri Sep 18 14:30:13 2020(r23726)
+++ trunk/scripts/blfs-chapter13.phpFri Sep 18 21:09:24 2020(r23727)
@@ -630,7 +630,7 @@
 
   if ( $package == "rustc" )
   {
-$max = find_max( $lines, "/release/", "/^.* (\d[\d\.]+\d) release.*$/" );
+$max = find_max( $lines, "/Rust/", "/^.*Rust (\d[\d\.]+\d).*$/" );
 return $max;
   }
   if ( $book_index == "swig" )

Modified: trunk/scripts/blfs-include.php
==
--- trunk/scripts/blfs-include.php  Fri Sep 18 14:30:13 2020(r23726)
+++ trunk/scripts/blfs-include.php  Fri Sep 18 21:09:24 2020(r23727)
@@ -138,6 +138,7 @@
   // Do not strip tags
   if ( preg_match( "/gpm/",  $url ) ||
preg_match( "/libvdpau/", $url ) ||
+   preg_match( "/imagemagick/", $url ) ||
preg_match( "/alsa/", $url ) )
   {
  exec( "wget -q --no-check-certificate -O- $url", $dir );
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #14049: PerlIO-utf8_strict-0.008

2020-09-18 Thread BLFS Trac via blfs-book 
#14049: PerlIO-utf8_strict-0.008
-+---
 Reporter:  bdubbs   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  10.1
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New minor version.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r23726 - trunk/BOOK/general/prog

2020-09-18 Thread renodr--- via blfs-book 
Author: renodr
Date: Fri Sep 18 14:30:13 2020
New Revision: 23726

Log:
Remove a leftover from a template copy

Modified:
   trunk/BOOK/general/prog/py3c.xml

Modified: trunk/BOOK/general/prog/py3c.xml
==
--- trunk/BOOK/general/prog/py3c.xmlFri Sep 18 11:54:34 2020(r23725)
+++ trunk/BOOK/general/prog/py3c.xmlFri Sep 18 14:30:13 2020(r23726)
@@ -72,18 +72,6 @@
 
   Required
   
-
-  
-
-  Recommended
-  
-
-  
-
-  Optional
-  
-
-  
 -->
   
 User Notes: 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14029: GNOME 3.38 External Libraries - amtk tepl librsvg webkitgtk glib-networking json-glib libhandy libdazzle pygobject3 at-spi2-atk at-spi2-core gtksourceview4 pyatspi

2020-09-18 Thread BLFS Trac via blfs-book 
#14029: GNOME 3.38 External Libraries - amtk tepl librsvg webkitgtk 
glib-networking
json-glib libhandy libdazzle pygobject3 at-spi2-atk at-spi2-core
gtksourceview4 pyatspi libsoup adwaita-icon-theme
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 == pygobject3 ==

 '''NOTE: This version drops Python2 support. I've removed the python2
 version of pygobject3 from my system, and I'm going to rebuild the
 following consumers:'''

 {{{
 general/graphlib/gegl.xml:  
 general/genlib/libical.xml:   (for some
 tests)
 general/sysutils/udisks2.xml:   (for the
 integration tests),
 general/sysutils/upower.xml:  ,
 general/sysutils/dbus.xml:  ,
 general/genutils/ibus.xml:   (both to
 build the Python support library),
 general/prog/pyatspi2.xml:
 general/prog/dbus-python.xml: and
 gnome/applications/gnome-tweaks.xml:  ,
 and
 gnome/platform/libsecret.xml:   (Python 3
 module)
 gnome/platform/libpeas.xml:  
 networking/netutils/networkmanager.xml:  ,
 postlfs/editors/gedit.xml:  
 xsoft/office/gnumeric.xml:  ,
 }}}

 '''Release Notes'''

 {{{
 3.38.0 - 2020-09-12
 ---

 * Python 2 is no longer supported.

   Note for distros/packagers:
   In case you want to keep Python 2 support you'll likely split any
 existing
   package into a Python 2 and 3 version. Since these aren't parallel
 installable
   here are some recommendations on how to make it work:

   * Build the devel package from the Python 3 source package
   * Drop the headers/.pc files from the Python 2 build/package
   * Make sure no Python 2 using package depends on the devel package
 (@Arch: gnumeric can be build without Python support for example)

   See :issue:`392` for details

 * meson: Make the `pycairo` option a feature :mr:`146` :mr:`147`
 * gdk overrides: Fix wrapping of scroll events :mr:`141`
 * Add overrides for Gtk.Button set/get_focus_on_click :mr:`132`
 }}}

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14029: GNOME 3.38 External Libraries - amtk tepl librsvg webkitgtk glib-networking json-glib libhandy libdazzle pygobject3 at-spi2-atk at-spi2-core gtksourceview4 pyatspi

2020-09-18 Thread BLFS Trac via blfs-book 
#14029: GNOME 3.38 External Libraries - amtk tepl librsvg webkitgtk 
glib-networking
json-glib libhandy libdazzle pygobject3 at-spi2-atk at-spi2-core
gtksourceview4 pyatspi libsoup adwaita-icon-theme
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 == json-glib ==

 '''1.5.2'''

 {{{
 Overview of changes for 1.6
 ==
 • Add getters with default fallback for JsonObject [Emmanuele Bassi]
 • #26 - Clarify some expections of the json_object_get_*_member APIs
 [Debarshi Ray]
 • #29 - Improve reproducibility of the build [Ravish Bhatia]
 • Use json_node_unref() with g_autoptr() [Robert Ancell]
 • Clarify documentation regarding programmer errors [Philip Withnall]
 • Fix getting immutable root nodes from empty input [Philip Withnall]
 • Fix various memory leaks [Philip Withnall, Emmanuele Bassi]
 • Add `--output` option to json-glib-format [Emmanuele Bassi]
 • Refresh the build [Emmanuele Bassi]
 • Add glib as a fallback sub-project [Xavier Claessens]
 • Don't error with MSVC C4819 warning [Seungha Yang]
 • Fix nullable annotation [Niels De Graef]
 • Allow disabling tests when building [Stéphane Cerveau]
 • #39 - Fix default deserialization method for JsonSerializable [Jeremy
 Philippe]
 • Stop string to GVariant conversion failing due to unrelated errno
 changes [Robert Ancell]
 • Support loading files via memory mapping [Philip Withnall]
 • #33 - Add a symbol version to all exported symbols [Simon McVittie]
 • #48 - Fix build with Clang 11 [Dimitry Andric]
 • Stop using deprecated g_object_newv() constructor [Emmanuele Bassi]
 • Add ordered iteration to JsonObjectIter [Emmanuele Bassi]
 • #46 - Document nullability of `json_from_string()` [Emmanuele Bassi]
 • #45 - Properly detect multiple top-level statements [Emmanuele Bassi]
 • #41, #22 - Fix library versions on Darwin [Tom Schoonjans]
 }}}

 '''1.6 has the same release notes as above'''

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r23725 - trunk/BOOK/general/genlib

2020-09-18 Thread renodr--- via blfs-book 
Author: renodr
Date: Fri Sep 18 11:54:34 2020
New Revision: 23725

Log:
glib2: Remove an old warning that contradicts the new one,

Modified:
   trunk/BOOK/general/genlib/glib2.xml

Modified: trunk/BOOK/general/genlib/glib2.xml
==
--- trunk/BOOK/general/genlib/glib2.xml Thu Sep 17 13:30:47 2020(r23724)
+++ trunk/BOOK/general/genlib/glib2.xml Fri Sep 18 11:54:34 2020(r23725)
@@ -155,27 +155,6 @@
 
 
   
-
-If upgrading from a previous version of GLib that was built using
-autotools, and the libtool archives (.la
-files) were installed, you will need to adjust all installed libtool
-archives,
-/usr/lib/libg{io,lib,module,object,thread}-2.0.la,
-to replace references to the libtool archives for this package with the
-appropriate linker library flag (-l),
--lg{io,lib,module,object,thread}. 600+ files must be
-modified on a complete gnome desktop.
-  
-  
-
-  
- Alternatively, you can just remove the unneeded .la files
- with the script at .
-  
-
-
-
-  
 If a previous version of glib is installed, move the headers out of the
 way so that later packages do not encounter conflicts:
   
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #14048: pango-1.46.2

2020-09-18 Thread BLFS Trac via blfs-book 
#14048: pango-1.46.2
-+---
 Reporter:  renodr   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  10.1
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version

 {{{
 News
 

 - Fix pango_win32_font_map_load_font with falback families
 - Fix an assertion in pango_language_get_scripts
 - Fix a crash in get_items_log_attrs
 - Fix attribute iterators with overlapping attributes
 - Fix rendering of Emoji keycap sequences
 - ci: Run the testsuite under asan and fix all reported issues
 - build: Make libthai, cairo, xft, fontconfig, freetype
   dependencies meson features
 }}}

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14047: Samba-4.12.7 (Urgent security release)

2020-09-18 Thread BLFS Trac via blfs-book 
#14047: Samba-4.12.7 (Urgent security release)
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  highest  |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by renodr):

 * owner:  blfs-book => renodr
 * priority:  normal => highest
 * status:  new => assigned


Comment:

 {{{
 The netlogon protocol contains a flaw that allows an authentication
 bypass. This was reported and patched by Microsoft as CVE-2020-1472.
 Since the bug is a protocol level flaw, and Samba implements the
 protocol, Samba is also vulnerable.
 }}}

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #14047: Samba-4.12.7 (Urgent security release)

2020-09-18 Thread BLFS Trac via blfs-book 
#14047: Samba-4.12.7 (Urgent security release)
-+---
 Reporter:  renodr   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  10.1
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 CVE-2020-1472 (Unauthenticated domain takeover via netlogon
 ("ZeroLogon")), affects our version of Samba (and this is a protocol level
 flaw). Samba File Server will need modifications to continue to talk to
 Active Directory domains, so this directly affects us.

 CVE-2020-1472 has been rated a 10.0/10.0 by the United States National
 Vulnerability Database.

 Here is the release announcement:

 {{{
 Release Announcements
 -

 These are security releases in order to address the following defect:

 o CVE-2020-1472: Unauthenticated domain takeover via netlogon
 ("ZeroLogon").

 The following applies to Samba used as domain controller only (most
 seriously the Active Directory DC, but also the classic/NT4-style DC).

 Installations running Samba as a file server only are not directly
 affected by this flaw, though they may need configuration changes to
 continue to talk to domain controllers (see "file servers and domain
 members" below).

 The netlogon protocol contains a flaw that allows an authentication
 bypass. This was reported and patched by Microsoft as CVE-2020-1472.
 Since the bug is a protocol level flaw, and Samba implements the
 protocol, Samba is also vulnerable.

 However, since version 4.8 (released in March 2018), the default
 behaviour of Samba has been to insist on a secure netlogon channel,
 which is a sufficient fix against the known exploits. This default is
 equivalent to having 'server schannel = yes' in the smb.conf.

 Therefore versions 4.8 and above are not vulnerable unless they have
 the smb.conf lines 'server schannel = no' or 'server schannel = auto'.

 Samba versions 4.7 and below are vulnerable unless they have 'server
 schannel = yes' in the smb.conf.

 Note each domain controller needs the correct settings in its smb.conf.

 Vendors supporting Samba 4.7 and below are advised to patch their
 installations and packages to add this line to the [global] section if
 their smb.conf file.

 The 'server schannel = yes' smb.conf line is equivalent to Microsoft's
 'FullSecureChannelProtection=1' registry key, the introduction of
 which we understand forms the core of Microsoft's fix.

 Some domains employ third-party software that will not work with a
 'server schannel = yes'. For these cases patches are available that
 allow specific machines to use insecure netlogon. For example, the
 following smb.conf:

server schannel = yes
server require schannel:triceratops$ = no
server require schannel:greywacke$ = no

 will allow only "triceratops$" and "greywacke$" to avoid schannel.

 More details can be found here:
 https://www.samba.org/samba/security/CVE-2020-1472.html


 Changes:
 

 o  Jeremy Allison 
* BUG 14497: CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Protect
  netr_ServerPasswordSet2 against unencrypted passwords.

 o  Günther Deschner 
* BUG 14497: CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Support
  "server require schannel:WORKSTATION$ = no" about unsecure
 configurations.

 o  Gary Lockyer 
* BUG 14497: CVE-2020-1472(ZeroLogon): s4 torture rpc: repeated bytes
 in
  client challenge.

 o  Stefan Metzmacher 
* BUG 14497: CVE-2020-1472(ZeroLogon): libcli/auth: Reject weak client
  challenges in netlogon_creds_server_init()
  "server require schannel:WORKSTATION$ = no".


 ###
 Reporting bugs & Development Discussion
 ###

 Please discuss this release on the samba-technical mailing list or by
 joining the #samba-technical IRC channel on irc.freenode.net.

 If you do report problems then please try to send high quality
 feedback. If you don't provide vital information to help us track down
 the problem then you will probably be ignored.  All bug reports should
 be filed under the Samba 4.1 and newer product in the project's Bugzilla
 database (https://bugzilla.samba.org/).


 ==
 == Our Code, Our Bugs, Our Responsibility.
 == The Samba Team
 ==



 
 Download Details
 

 The uncompressed tarballs and patch files have been signed
 using GnuPG (ID 6F33915B6568B7EA).  The source code can be downloaded
 from:

 https://download.samba.org/pub/samba/stable/

 The release notes are available online at:

 https://www.samba.org/samba/history/samba-4.12.7.html
 https://www.samba.org/samba/history/samba-4.11.13.html
 https://www.samba.org/samba/history/samba-4.10.18.html

[blfs-book] Missing BLFS patches

2020-09-18 Thread Bruce Dubbs via blfs-book 
cp: cannot stat 
'/srv/www/www.linuxfromscratch.org/patches/downloads/mesa-add_xdemos/mesa-add_xdemos-1.patch':
 No such file or directory
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] Files in BLFS svn missing on osuosl

2020-09-18 Thread bdubbs--- via blfs-book 
Missing node-v12.18.4.tar.xz
Missing mesa-20.1.8.tar.xz
Missing icewm-1.8.3.tar.gz
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] Missing BLFS patches

2020-09-18 Thread Bruce Dubbs via blfs-book 
cp: cannot stat 
'/srv/www/www.linuxfromscratch.org/patches/downloads/mesa-add_xdemos/mesa-add_xdemos-1.patch':
 No such file or directory
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page