[blfs-book] BLFS Package Currency Check - 2021-01-27 05:45:01 GMT

2021-01-26 Thread bdubbs--- via blfs-book 
BLFS PackageBLFS Version  Latest  Ticket
chapter 04: libcap  2.46 2.47 #14555
chapter 04: nss 3.60.1   3.61 #14549
chapter 05: btrfs-progs 5.9  5.10 #14531
chapter 06: vim 8.2.2253 8.2.2415 #12241
chapter 09: glibmm  2.64.5   2.68.0   #14403
chapter 09: libgcrypt   1.8.71.9.0#14534
chapter 09: libmbim 1.24.4   1.24.6   #14550
chapter 09: talloc  2.3.12.3.2#14566
chapter 09: telepathy-glib  0.24.1   0.24.2   
chapter 10: libjpeg-turbo   2.0.62.0.90   #14310
chapter 11: ImageMagick 7.0.10-577.0.10-60#7859
chapter 11: asciidoc9.0.49.0.5#14561
chapter 11: gtk-doc 1.33.1   1.33.2   #14535
chapter 11: pinentry1.1.01.1.1#14551
chapter 12: autofs  5.1.65.1.7#14567
chapter 12: mc  4.8.25   4.8.26   #14543
chapter 13: Business-ISBN   3.0053.006#14537
chapter 13: IO-Socket-SSL   2.0682.069#14552
chapter 13: cbindgen0.15.0   0.16.0   #14414
chapter 13: jdk 15.0.2   manual   
chapter 13: rustc   1.47.0   1.49.0   #9168
chapter 13: scons   4.0.14.1.0#14538
chapter 13: tk  8.6.11.1 8.6.11   
chapter 14: bind9   9.16.10  9.16.11  #14539
chapter 14: samba   4.13.3   4.13.4   #14569
chapter 20: bind9.16.10  9.16.11  #14539
chapter 20: db  5.3.28   manual   
chapter 24: libXt   1.2.01.2.1#14560
chapter 24: util-macros 1.19.2   1.19.3   #14559
chapter 24: xf86-video-nouveau  1.0.16   1.0.17   #14557
chapter 25: atkmm   2.28.1   2.36.0   #14406
chapter 25: cairo   1.17.2+f93fc72c031.16.0   #12916
chapter 25: cairomm 1.14.0   1.16.0   #14172
chapter 25: gtkmm3  3.24.3   4.0.0#14443
chapter 25: pango   1.48.0   1.48.1   #14545
chapter 25: pangomm 2.42.2   2.48.0   #14405
chapter 25: qt5 5.15.2   6.0.0#14356
chapter 25: qtwebengine 5.15.2   manual   
chapter 26: icewm   2.0.12.1.1#14553
chapter 26: oxygen-icons5   5.77.0   5.78.0   #14493
chapter 29: extra-cmake-modules 5.77.0   5.78.0   #14493
chapter 32: kf5 5.77 5.78 #14493
chapter 32: kf5-apps20.12.0  20.12.1  #14475
chapter 32: plasma5 5.20.4   5.20.5   #14467
chapter 37: thunar  4.16.2   4.17.0   #14558
chapter 43: abiword-docs3.0.2manual   
chapter 43: feh 3.6.23.6.3#14568
chapter 43: gparted 1.1.01.2.0#14565
chapter 43: thunderbird 78.6.1   78.7.0   
chapter 43: xarchiver   0.5.4.16 0.5.4.17 #14563
chapter 44: libmusicbrainz5 5.1.00
chapter 44: pipewire0.3.19   0.3.20   #14541
chapter 44: x2653.4  manual   
chapter 45: kwave   20.12.0  20.12.1  #14475
chapter 45: vlc 3.0.11.1 3.0.12.1 #14533
chapter 50: docbook-xsl-nons1.79.2   manual   
chapter 50: dvisvgm 2.11 2.11.1   #14547

-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r24147 - trunk/BOOK/networking/netprogs

2021-01-26 Thread xry111--- via blfs-book 
Author: xry111
Date: Tue Jan 26 20:15:55 2021
New Revision: 24147

Log:
samba: remove a sed unneeded with samba >= 4.13.3

Modified:
   trunk/BOOK/networking/netprogs/samba.xml

Modified: trunk/BOOK/networking/netprogs/samba.xml
==
--- trunk/BOOK/networking/netprogs/samba.xmlTue Jan 26 19:52:31 2021
(r24146)
+++ trunk/BOOK/networking/netprogs/samba.xmlTue Jan 26 20:15:55 2021
(r24147)
@@ -175,13 +175,6 @@
 Installation of Samba
 
 
-  Fix a file that fails to compile with Glibc-2.32:
-
-
-sed -r 's/nss_(setpw|endpw|setgr|endgr)ent/my_/' \
--i nsswitch/nsstest.c
-
-
   Fix a test that always fails:
 
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14414: cbindgen-0.16.0 (Wait for TB and FF updates)

2021-01-26 Thread BLFS Trac via blfs-book 
#14414: cbindgen-0.16.0 (Wait for TB and FF updates)
-+
 Reporter:  bdubbs   |   Owner:  ken@…
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  hold
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+
Changes (by ken@…):

 * owner:  bdubbs => ken@…
 * status:  assigned => new


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] Batch modify: #14525, #14526, #14527, #14528, #14530

2021-01-26 Thread BLFS Trac via blfs-book 
Batch modification to #14525, #14526, #14527, #14528, #14530 by renodr:


Action: resolve

Comment:
Fixed at r24146

--
Tickets URL: 

BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r24146 - in trunk/BOOK: . general/genlib general/sysutils introduction/welcome server/mail xsoft/other

2021-01-26 Thread renodr--- via blfs-book 
Author: renodr
Date: Tue Jan 26 19:52:31 2021
New Revision: 24146

Log:
Update to inkscape-1.0.2
Update to postfix-3.5.9
Update to ModemManager-1.14.10
Update to libsigsegv-2.13
Update to libical-3.0.9

Modified:
   trunk/BOOK/general/genlib/libical.xml
   trunk/BOOK/general/genlib/libsigsegv.xml
   trunk/BOOK/general/sysutils/modemmanager.xml
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/packages.ent
   trunk/BOOK/server/mail/postfix.xml
   trunk/BOOK/xsoft/other/inkscape.xml

Modified: trunk/BOOK/general/genlib/libical.xml
==
--- trunk/BOOK/general/genlib/libical.xml   Tue Jan 26 13:33:28 2021
(r24145)
+++ trunk/BOOK/general/genlib/libical.xml   Tue Jan 26 19:52:31 2021
(r24146)
@@ -6,9 +6,9 @@
 
   https://github.com/libical/libical/releases/download/v/libical-.tar.gz;>
   
-  
-  
-  
+  
+  
+  
   
 ]>
 
@@ -88,6 +88,7 @@
 
   ,
(for the API documentation),
+   (for the API documentation),
   , and
(for some tests)
 
@@ -100,11 +101,13 @@
   
 Installation of libical
 
+
 
 
   Install libical by running the
@@ -126,16 +129,14 @@
   -DICAL_GLIB_VAPI=true\
   .. 
 make
-
+
 
   To test the results, issue: make test.
   
@@ -149,7 +150,7 @@
 
 
 make install
-
+
   
 
   
@@ -174,12 +175,12 @@
   in order to only build the shared libraries.
 
 
+
 
 
   -DGOBJECT_INTROSPECTION=true: This switch is used
@@ -222,12 +223,19 @@
   None
 
 
-  libical_cxx.so, libical.so, libicalss_cxx.so, libicalss.so,
+  libical_cxx.so, 
+  libical.so, 
+  libical-glib.so, 
+  libicalss_cxx.so, 
+  libicalss.so,
   and libicalvcal.so
 
 
-  /usr/include/libical, /usr/lib/cmake/LibIcal and
-  /usr/share/doc/libical-/html
+  /usr/include/libical, 
+  /usr/include/libical-glib, 
+  /usr/lib/cmake/LibIcal, 
+  /usr/libexec/libical, 
+  and /usr/share/doc/libical-/html
 
   
 
@@ -261,6 +269,18 @@
   
 
   
+
+  
+libical-glib.so
+
+  
+contains the libical glib bindings.
+  
+  
+libical-glib.so
+  
+
+  
 
   
 libicalss.so

Modified: trunk/BOOK/general/genlib/libsigsegv.xml
==
--- trunk/BOOK/general/genlib/libsigsegv.xmlTue Jan 26 13:33:28 2021
(r24145)
+++ trunk/BOOK/general/genlib/libsigsegv.xmlTue Jan 26 19:52:31 2021
(r24146)
@@ -6,10 +6,10 @@
 
   
   
-  
-  
-  
-  
+  
+  
+  
+  
 ]>
 
 

Modified: trunk/BOOK/general/sysutils/modemmanager.xml
==
--- trunk/BOOK/general/sysutils/modemmanager.xmlTue Jan 26 13:33:28 
2021(r24145)
+++ trunk/BOOK/general/sysutils/modemmanager.xmlTue Jan 26 19:52:31 
2021(r24146)
@@ -6,9 +6,9 @@
 
   https://www.freedesktop.org/software/ModemManager/ModemManager-.tar.xz;>
   
-  
-  
-  
+  
+  
+  
   
 ]>
 

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Tue Jan 26 13:33:28 
2021(r24145)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Tue Jan 26 19:52:31 
2021(r24146)
@@ -45,6 +45,26 @@
   January 26th, 2021
   
 
+  [renodr] - Update to libical-3.0.9. Fixes
+  #14525.
+
+
+  [renodr] - Update to libsigsegv-2.13. Fixes
+  #14526.
+
+
+  [renodr] - Update to ModemManager-1.14.10. Fixes
+  #14527.
+
+
+  [renodr] - Update to postfix-3.5.9. Fixes
+  #14528.
+
+
+  [renodr] - Update to inkscape-1.0.2. Fixes
+  #14530.
+
+
   [timtas] - Update to sudo-1.9.5p2 (Critical security release). 
Fixes
   #14570.
 

Modified: trunk/BOOK/packages.ent
==
--- trunk/BOOK/packages.ent Tue Jan 26 13:33:28 2021(r24145)
+++ trunk/BOOK/packages.ent Tue Jan 26 19:52:31 2021(r24146)
@@ -145,7 +145,7 @@
 
 
 
-
+
 
 
 
@@ -159,7 +159,7 @@
 
 
 
-
+
 
 
 
@@ -296,7 +296,7 @@
 
 
 
-
+
 
 
 
@@ -661,7 +661,7 @@
 
 
 
-
+
 
 
 
@@ -931,7 +931,7 @@
 
 
 
-
+
 
 
 

Modified: trunk/BOOK/server/mail/postfix.xml
==
--- trunk/BOOK/server/mail/postfix.xml  Tue Jan 26 13:33:28 2021(r24145)
+++ trunk/BOOK/server/mail/postfix.xml  Tue Jan 26 19:52:31 2021(r24146)
@@ -6,9

Re: [blfs-book] [BLFS Trac] #14530: inkscape-1.0.2

2021-01-26 Thread BLFS Trac via blfs-book 
#14530: inkscape-1.0.2
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 The glibc fix is no longer required

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14530: inkscape-1.0.2

2021-01-26 Thread BLFS Trac via blfs-book 
#14530: inkscape-1.0.2
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 {{{
 New Features

 Zooming by middle mouse button click (pressing scroll wheel) can now
 be deactivated in Edit → Preferences → Behavior → Steps: Zoom with middle
 mouse click (Commit 186736)
 Canvas rotation by Ctrl + middle mouse drag / Ctrl + Shift + Scroll
 can be prevented in two ways:
 temporarily for the current document from View → Canvas
 Orientation → Lock Rotation (Commit 5eb7c5)
 for all new Inkscape windows in Edit → Preferences → Interface:
 Lock canvas rotation by default (Commit e8c10d)

 Bug fixes
 General

 Copy-Paste:
 A long-standing, very annoying bug where, when copying an object
 to the clipboard while also running certain other programs on Linux
 desktops (mainly clipboard managers), caused multiple export extension
 dialogs to open, has been fixed, so you can now again use your favorite
 clipboard manager while also using Inkscape (Commit fe7c68, Bug #575)
 When copy-pasting some items along with their
 originals/frames/paths (clones, text-on-path, text-in-a-shape, linked
 offsets), they are no longer displaced in relation to the pasted original
 (Commit b93f21, Bug #853)
 Stroke to Path: Converting an object's stroke to a path no longer
 makes its clones vanish (Bug #1120)
 Performance: Improved rendering performance when zooming through
 multiple zoom levels (Commit 28e21e)
 CSS: CSS classes that start with a letter that isn't part of the ASCII
 set are no longer ignored (Bug #1094)
 Cleanup: An outdated link that pointed to a potentially offensive
 website now has been removed from a branding document (Commit 88efa4)
 User interface: Random actions should no longer cause sudden scaling
 of the canvas (Commit 49fc36)
 Markers: When adding a marker to a line, it can now be removed with a
 single Undo action again (not two) (Commit 179fe9, Bug #2130)

 macOS

 Performance: Packaging has been updated for macOS, which removes a
 performance regression in Inkscape 1.0.1 (Commit 643286)
 Icons: File system icons look correct again now (Commit 643286, Bug
 #1893)
 Export: PDF export no longer produces unprintable PDF files (Bug #827,
 Commit 643286)

 Circle Tool

 Arcs from Inkscape files created with versions older than 1.0 are no
 longer rendered as slices (Bug #1900)
 When dragging on an ellipse's handles inside the ellipse to create an
 arc, Inkscape no longer renders it as a closed slice (Commit def938)

 Eraser Tool

 A long-standing issue with the Eraser tool painting red lines instead
 of erasing as soon as the user has interacted with a menu or dialog or
 another user interface element has been fixed (Bug #2068, Commit 2057bf)

 Live Path Effects

 Fixed some issues with linked LPE item transforms (Commit 546b64,
 Commit e3cad6)

 Mesh Gradient tool

 Objects with a mesh gradient now keep their fill when copied to a
 different document (Bug #579)

 Filter Editor dialog

 The dialog elements are readable now when using a dark theme (Bug
 #885)

 Objects dialog

 The search function in the 'Objects' dialog shows results again (Bug
 #1736)

 Selectors and CSS dialog

 In addition to multiple crash fixes (see below), the dialog now
 correctly recognizes style tags inside the documents defs section (Commit
 12f4d6, Bug #905)

 Text

 A series of related bugs with text objects was fixed (MR #2434).
 All of the affected actions required a text object to behave like a
 path, but it behaved like a group, and the action failed. This series of
 bugs mostly affected new users who were following tutorials which did not
 work as expected.
 Specifically, the following actions now work again:
 A text object unioned with itself results in a single path again.
 Text objects can again be used with other objects in all Boolean
 operations.
 Text objects can again be inset and outset.
 Text objects can again be used to create a Dynamic Offset or a
 Linked Offset.
 The font preview sample now contains the correct currency symbols €¢
 (instead of \342\202\254\302\242). One needs to reset the preferences to
 see the updated font sample text (MR #2547).
 Custom font folders are found now and taken into account, even when
 the installed Pango version is newer than 1.44.7 (Bug #1977, Commit
 1771fa)

 Crash fixes

 A variety of crashes have been fixed for this current bugfix release.

 Specifically, we fixed a crash …

 … when drawing with the Calligraphy tool inside a group with the
 'Rotate copies' live path effect (and possibly when

Re: [blfs-book] [BLFS Trac] #14528: postfix-3.5.9

2021-01-26 Thread BLFS Trac via blfs-book 
#14528: postfix-3.5.9
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 {{{
  Runtime detection of DNSSEC support

 This update improves the reporting of DNSSEC problems that may affect DANE
 security. DNSSEC support may unavailable because of local configuration,
 libc incompatibility, or other infrastructure issues. This was backported
 from Postfix 3.6.

 Background: DNSSEC validation is needed for Postfix DANE support; this
 ensures that Postfix receives TLSA records with secure TLS server
 certificate info. When DNSSEC validation is unavailable, mail deliveries
 using opportunistic DANE (security level 'dane') will not be protected by
 server certificate info in TLSA records, and mail deliveries using
 mandatory DANE (security level 'dane-only') will not be made at all.

 This update introduces the following behavior: when a process requests
 DNSSEC support (typically, for Postfix DANE support), the process may now
 do a runtime test to determine if DNSSEC validation is available.

 The new dnssec_probe parameter specifies a DNS query type (default: "ns")
 and DNS query name (default: ".") that Postfix may use to determine
 whether DNSSEC validation is available. Specify an empty value to disable
 this feature.

 When dnssec_probe is enabled, a Postfix process will send a DNSSEC probe
 after 1) the process made a DNS query that requested DNSSEC validation, 2)
 the process did not receive a DNSSEC validated response to this query or
 to an earlier query, and 3) the process did not already send a DNSSEC
 probe.

 When the DNSSEC probe has no response, or when the response is not DNSSEC
 validated, Postfix logs a warning that DNSSEC validation may be
 unavailable. Examples:

 warning: DNSSEC validation may be unavailable
 warning: reason: dnssec_probe 'ns:.' received a response that is not
 DNSSEC validated
 warning: reason: dnssec_probe 'ns:.' received no response: Server failure

 With this update, the Postfix build system will no longer automatically
 disable DNSSEC support when it determines that Postfix will use libc-musl.
 This removes the earlier libc-musl workaround introduced with Postfix
 3.2.15, 3.3.10, 3.4.12, and 3.5.2.
 }}}

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14414: cbindgen-0.16.0 (Wait for TB and FF updates)

2021-01-26 Thread Bruce Dubbs via blfs-book 

On 1/26/21 5:50 PM, BLFS Trac wrote:

#14414: cbindgen-0.16.0 (Wait for TB and FF updates)
-+---
  Reporter:  bdubbs   |   Owner:  bdubbs
  Type:  enhancement  |  Status:  assigned
  Priority:  normal   |   Milestone:  hold
Component:  BOOK | Version:  SVN
  Severity:  normal   |  Resolution:
  Keywords:   |
-+---

Comment (by ken@…):

  Bruce, would you like me to take this ?


Yes, please.

--
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14548: seamonkey-2.53.6

2021-01-26 Thread BLFS Trac via blfs-book 
#14548: seamonkey-2.53.6
-+-
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  closed
 Priority:  highest  |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-

Comment (by ken@…):

 Replying to [comment:2 renodr]:

 >
 > Ken, it's worth noting that this should be compatible with rust-1.48.0
 should we need to upgrade anytime soon
 >

 I've just looked at firefox-86.0beta1, and that still requires rust >=
 1.47.0. ff87 (beta due after 23rd Feb) will want 1.48. But until we move
 to the next firefox esr series (91, due 13th July) or until librsvg forces
 us, for the moment no reason to change.

 My (unmeasured) impression is that each newer version of rust takes longer
 to build firefox.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14414: cbindgen-0.16.0 (Wait for TB and FF updates)

2021-01-26 Thread BLFS Trac via blfs-book 
#14414: cbindgen-0.16.0 (Wait for TB and FF updates)
-+---
 Reporter:  bdubbs   |   Owner:  bdubbs
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  hold
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by ken@…):

 Bruce, would you like me to take this ?

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14549: nss-3.61

2021-01-26 Thread BLFS Trac via blfs-book 
#14549: nss-3.61
-+---
 Reporter:  renodr   |   Owner:  ken@…
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by ken@…):

 Will be needed for firefox-86 ;-)

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14549: nss-3.61

2021-01-26 Thread BLFS Trac via blfs-book 
#14549: nss-3.61
-+---
 Reporter:  renodr   |   Owner:  ken@…
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by ken@…):

 * owner:  blfs-book => ken@…
 * status:  new => assigned


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r24145 - trunk/BOOK/introduction/welcome

2021-01-26 Thread ken--- via blfs-book 
Author: ken
Date: Tue Jan 26 13:33:28 2021
New Revision: 24145

Log:
firefox-78.7.0 and JS78 do contain security fixes.

Modified:
   trunk/BOOK/introduction/welcome/changelog.xml

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Tue Jan 26 11:41:39 
2021(r24144)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Tue Jan 26 13:33:28 
2021(r24145)
@@ -72,7 +72,7 @@
 
 
   [ken] - Update to firefox-78.7.0 and JS 78.7.0.  Both
-  appear to contain security fixes. Fixes
+  contain security fixes. Fixes
   #14564.
 

-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14525: libical-3.0.9

2021-01-26 Thread BLFS Trac via blfs-book 
#14525: libical-3.0.9
-+---
 Reporter:  pierre.labastie  |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 A couple things here - the icu/python fixes are no longer required, and
 building the API docs works again. I'll adapt the command explanation for
 -DICAL_BUILD_DOCS to that effect, but will leave -DICAL_BUILD_DOCS=false
 in the cmake line for now.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14564: firefox-78.7.0

2021-01-26 Thread BLFS Trac via blfs-book 
#14564: firefox-78.7.0
-+-
 Reporter:  ken@…|   Owner:  ken@…
 Type:  enhancement  |  Status:  closed
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-
Changes (by ken@…):

 * priority:  normal => high
 * status:  assigned => closed
 * resolution:   => fixed


Comment:

 Security fixes listed at [https://www.mozilla.org/en-
 US/security/advisories/mfsa2021-04/]
 Some are rated 'high', the JS78 fix appears to be the "use after poison"
 fix which is rated moderate.

 Fixed in r24138.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14570: sudo-1.9.5p2 (Critical security release)

2021-01-26 Thread BLFS Trac via blfs-book 
#14570: sudo-1.9.5p2 (Critical security release)
-+-
 Reporter:  renodr   |   Owner:  timtas
 Type:  enhancement  |  Status:  closed
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-
Changes (by timtas):

 * status:  assigned => closed
 * resolution:   => fixed


Comment:

 Fixed in revision 24144.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r24144 - in trunk/BOOK: . introduction/welcome postlfs/security

2021-01-26 Thread timtas--- via blfs-book 
Author: timtas
Date: Tue Jan 26 11:41:39 2021
New Revision: 24144

Log:
Update to sudo-1.9.5p2 (Critical security release)

Modified:
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/packages.ent
   trunk/BOOK/postlfs/security/sudo.xml

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Mon Jan 25 23:44:58 
2021(r24143)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Tue Jan 26 11:41:39 
2021(r24144)
@@ -45,6 +45,10 @@
   January 26th, 2021
   
 
+  [timtas] - Update to sudo-1.9.5p2 (Critical security release). 
Fixes
+  #14570.
+
+
   [renodr] - Update to vorbis-tools-1.4.2 (Security Update). 
Fixes
   #14546.
 

Modified: trunk/BOOK/packages.ent
==
--- trunk/BOOK/packages.ent Mon Jan 25 23:44:58 2021(r24143)
+++ trunk/BOOK/packages.ent Tue Jan 26 11:41:39 2021(r24144)
@@ -40,7 +40,7 @@
 
 
 
-
+
 
 
 

Modified: trunk/BOOK/postlfs/security/sudo.xml
==
--- trunk/BOOK/postlfs/security/sudo.xmlMon Jan 25 23:44:58 2021
(r24143)
+++ trunk/BOOK/postlfs/security/sudo.xmlTue Jan 26 11:41:39 2021
(r24144)
@@ -6,8 +6,8 @@
 
   http://www.sudo.ws/dist/sudo-.tar.gz;>
   ftp://ftp.sudo.ws/pub/sudo/sudo-.tar.gz;>
-  
-  
+  
+  
   
   
 ]>
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14570: sudo-1.9.5p2 (Critical security release)

2021-01-26 Thread BLFS Trac via blfs-book 
#14570: sudo-1.9.5p2 (Critical security release)
-+---
 Reporter:  renodr   |   Owner:  timtas
 Type:  enhancement  |  Status:  assigned
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by timtas):

 * owner:  blfs-book => timtas
 * status:  new => assigned


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #14570: sudo-1.9.5p2 (Critical security release)

2021-01-26 Thread BLFS Trac via blfs-book 
#14570: sudo-1.9.5p2 (Critical security release)
-+
 Reporter:  renodr   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

Comment (by renodr):

 {{{
 Qualys Security Advisory

 Baron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156)


 
 Contents
 

 Summary
 Analysis
 Exploitation
 Acknowledgments
 Timeline


 
 Summary
 

 We discovered a heap-based buffer overflow in Sudo
 (https://www.sudo.ws/). This vulnerability:

 - is exploitable by any local user (normal users and system users,
   sudoers and non-sudoers), without authentication (i.e., the attacker
   does not need to know the user's password);

 - was introduced in July 2011 (commit 8255ed69), and affects all legacy
   versions from 1.8.2 to 1.8.31p2 and all stable versions from 1.9.0 to
   1.9.5p1, in their default configuration.

 We developed three different exploits for this vulnerability, and
 obtained full root privileges on Ubuntu 20.04 (Sudo 1.8.31), Debian 10
 (Sudo 1.8.27), and Fedora 33 (Sudo 1.9.2). Other operating systems and
 distributions are probably also exploitable.


 
 Analysis
 

 If Sudo is executed to run a command in "shell" mode (shell -c command):

 - either through the -s option, which sets Sudo's MODE_SHELL flag;

 - or through the -i option, which sets Sudo's MODE_SHELL and
   MODE_LOGIN_SHELL flags;

 then, at the beginning of Sudo's main(), parse_args() rewrites argv
 (lines 609-617), by concatenating all command-line arguments (lines
 587-595) and by escaping all meta-characters with backslashes (lines
 590-591):

 
 571 if (ISSET(mode, MODE_RUN) && ISSET(flags, MODE_SHELL)) {
 572 char **av, *cmnd = NULL;
 573 int ac = 1;
 ...
 581 cmnd = dst = reallocarray(NULL, cmnd_size, 2);
 ...
 587 for (av = argv; *av != NULL; av++) {
 588 for (src = *av; *src != '\0'; src++) {
 589 /* quote potential meta characters */
 590 if (!isalnum((unsigned char)*src) && *src != '_'
 && *src != '-' && *src != '$')
 591 *dst++ = '\\';
 592 *dst++ = *src;
 593 }
 594 *dst++ = ' ';
 595 }
 ...
 600 ac += 2; /* -c cmnd */
 ...
 603 av = reallocarray(NULL, ac + 1, sizeof(char *));
 ...
 609 av[0] = (char *)user_details.shell; /* plugin may override
 shell */
 610 if (cmnd != NULL) {
 611 av[1] = "-c";
 612 av[2] = cmnd;
 613 }
 614 av[ac] = NULL;
 615
 616 argv = av;
 617 argc = ac;
 618 }
 

 Later, in sudoers_policy_main(), set_cmnd() concatenates the
 command-line arguments into a heap-based buffer "user_args" (lines
 864-871) and unescapes the meta-characters (lines 866-867), "for sudoers
 matching and logging purposes":

 
  819 if (sudo_mode & (MODE_RUN | MODE_EDIT | MODE_CHECK)) {
  ...
  852 for (size = 0, av = NewArgv + 1; *av; av++)
  853 size += strlen(*av) + 1;
  854 if (size == 0 || (user_args = malloc(size)) == NULL) {
  ...
  857 }
  858 if (ISSET(sudo_mode, MODE_SHELL|MODE_LOGIN_SHELL)) {
  ...
  864 for (to = user_args, av = NewArgv + 1; (from = *av);
 av++) {
  865 while (*from) {
  866 if (from[0] == '\\' && !isspace((unsigned
 char)from[1]))
  867 from++;
  868 *to++ = *from++;
  869 }
  870 *to++ = ' ';
  871 }
  ...
  884 }
  ...
  886 }
 

 Unfortunately, if a command-line argument ends with a single backslash
 character, then:

 - at line 866, "from[0]" is the backslash character, and "from[1]" is
   the argument's null terminator (i.e., not a space character);

 - at line 867, "from" is incremented and points to the null terminator;

 - at line 868, the null terminator is copied to the

Re: [blfs-book] [BLFS Trac] #14570: sudo-1.9.5p2 (Critical security release)

2021-01-26 Thread BLFS Trac via blfs-book 
#14570: sudo-1.9.5p2 (Critical security release)
-+
 Reporter:  renodr   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  high |   Milestone:  10.1
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

Comment (by renodr):

 {{{
  Major changes between version 1.9.5p2 and 1.9.5p1:

 Fixed sudo's setprogname(3) emulation on systems that don't provide
 it.

 Fixed a problem with the sudoers log server client where a partial
 write to the server could result the sudo process consuming large amounts
 of CPU time due to a cycle in the buffer queue. Bug #954.

 Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes
 a link error when building sudo statically.

 The user's KRB5CCNAME environment variable is now preserved when
 performing PAM authentication. This fixes GSSAPI authentication when the
 user has a non-default ccache.

 When invoked as sudoedit, the same set of command line options are now
 accepted as for sudo -e. The -H and -P options are now rejected for
 sudoedit and sudo -e which matches the sudo 1.7 behavior. This is part of
 the fix for CVE-2021-3156.

 Fixed a potential buffer overflow when unescaping backslashes in the
 command's arguments. Normally, sudo escapes special characters when
 running a command via a shell (sudo -s or sudo -i). However, it was also
 possible to run sudoedit with the -s or -i flags in which case no escaping
 had actually been done, making a buffer overflow possible. This fixes
 CVE-2021-3156.
 }}}

 Note: The CVE number is CVE-2020-3156. More details in the next comment

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #14570: sudo-1.9.5p2 (Critical security release)

2021-01-26 Thread BLFS Trac via blfs-book 
#14570: sudo-1.9.5p2 (Critical security release)
-+---
 Reporter:  renodr   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  high |  Milestone:  10.1
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #14569: samba-4.13.4

2021-01-26 Thread BLFS Trac via blfs-book 
#14569: samba-4.13.4
-+---
 Reporter:  renodr   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  10.1
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] Files in BLFS svn missing on osuosl

2021-01-26 Thread bdubbs--- via blfs-book 
Missing firefox-78.7.0esr.source.tar.xz
Missing mutt-2.0.5.tar.gz
Missing firefox-78.7.0esr.source.tar.xz
Missing seamonkey-2.53.6.source.tar.xz
Missing vorbis-tools-1.4.2.tar.gz
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page