Author: bdubbs
Date: Sun Mar 1 08:25:21 2020
New Revision: 1530
Log:
Update website for 9.1 release
Added:
html/trunk/blfs/errata/9.1/
- copied from r1524, html/trunk/blfs/errata/9.0/
html/trunk/blfs/errata/9.1-systemd/
- copied from r1524, html/trunk/blfs/errata/9.0-systemd/
html/trunk/lfs/errata/9.1/
- copied from r1524, html/trunk/lfs/errata/9.0/
html/trunk/lfs/errata/9.1-systemd/
- copied from r1524, html/trunk/lfs/errata/9.0-systemd/
Modified:
html/trunk/blfs/download.html
html/trunk/blfs/errata/9.1-systemd/index.html
html/trunk/blfs/errata/9.1/index.html
html/trunk/blfs/errata/stable
html/trunk/blfs/errata/stable-systemd
html/trunk/blfs/news.html
html/trunk/blfs/read.html
html/trunk/lfs/download.html
html/trunk/lfs/errata/9.1-systemd/index.html
html/trunk/lfs/errata/9.1/index.html
html/trunk/lfs/errata/stable
html/trunk/lfs/errata/stable-systemd
html/trunk/lfs/errata/systemd
html/trunk/lfs/news.html
html/trunk/lfs/read.html
Modified: html/trunk/blfs/download.html
==============================================================================
--- html/trunk/blfs/download.html Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/blfs/download.html Sun Mar 1 08:25:21 2020 (r1530)
@@ -7,16 +7,16 @@
<p>Several versions of the BLFS book are available for download,
each in several formats:</p>
- <h2>Current Stable (version 9.0)</h2>
+ <h2>Current Stable (version 9.1)</h2>
<p>This is the latest released BLFS book.</p>
<ul>
- <li><a href="downloads/stable/blfs-book-9.0-html.tar.xz">compressed HTML
format, multiple pages</a></li>
- <li><a href="downloads/stable/BLFS-BOOK-9.0-nochunks.html">HTML format,
single page</a></li>
- <li><a href="downloads/stable/BLFS-BOOK-9.0-nochunks.html.xz">compressed
HTML format, single page</a></li>
+ <li><a href="downloads/stable/blfs-book-9.1-html.tar.xz">compressed HTML
format, multiple pages</a></li>
+ <li><a href="downloads/stable/BLFS-BOOK-9.1-nochunks.html">HTML format,
single page</a></li>
+ <li><a href="downloads/stable/BLFS-BOOK-9.1-nochunks.html.xz">compressed
HTML format, single page</a></li>
</ul>
<p>A directory listing is <a href="downloads/stable">also
available</a></p>
-<!--
+
<h2>Current Development</h2>
<p>This is the BLFS Book in its current development state.
The instructions are generally stable, but
@@ -24,19 +24,19 @@
</p>
<p>Daily rendered <a href="downloads/svn/">snapshots</a> may be
downloaded. Or check
- out the book's XML from the Subversion repository and render it
yourself:</p>
+ out the book's XML from the Subversion repository and render it
yourself:</p>
<div class="cmd">
<p>svn co svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK/</p>
</div>
--->
+
- <h2>Current Stable Systemd (version 9.0)</h2>
+ <h2>Current Stable Systemd (version 9.1)</h2>
<p>This is the latest released BLFS systemd book.</p>
<ul>
- <li><a
href="downloads/stable-systemd/blfs-book-9.0-systemd-html.tar.xz">compresseded
HTML format, multiple pages</a></li>
- <li><a
href="downloads/stable-systemd/BLFS-BOOK-9.0-systemd-nochunks.html">HTML
format, single page</a></li>
- <li><a
href="downloads/stable-systemd/BLFS-BOOK-9.0-systemd-nochunks.html.xz">compressed
HTML format, single page</a></li>
+ <li><a
href="downloads/stable-systemd/blfs-book-9.1-systemd-html.tar.xz">compresseded
HTML format, multiple pages</a></li>
+ <li><a
href="downloads/stable-systemd/BLFS-BOOK-9.1-systemd-nochunks.html">HTML
format, single page</a></li>
+ <li><a
href="downloads/stable-systemd/BLFS-BOOK-9.1-systemd-nochunks.html.xz">compressed
HTML format, single page</a></li>
</ul>
<p>A directory listing is <a href="downloads/stable-systemd">also
available</a></p>
Modified: html/trunk/blfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/9.0-systemd/index.html Thu Jan 23 21:51:28
2020 (r1524)
+++ html/trunk/blfs/errata/9.1-systemd/index.html Sun Mar 1 08:25:21
2020 (r1530)
@@ -3,180 +3,13 @@
<!--#include virtual="/blfs/menu.html" -->
<div class="main">
- <h1>Errata for BLFS systemd Version 9.0</h1>
+ <h1>Errata for BLFS systemd Version 9.1</h1>
+ <!-- Editors: Do not remove this entry, just comment it out. -->
<ul>
- <li>After release, a problem was discovered in BIND where the
instructions
- used in the book would result in a nonexistent rndc.conf file. To fix
this,
- run "rndc-confgen -a -b 512 -t /srv/named" instead of
- "rndc-confgen -r /dev/urandom -b 512 > /etc/rndc.conf". Also,
- please modify the files to reference /etc/named instead of
/etc/namedb.</li>
+ <li>There are no current errata for blfs-9.1-systemd.</li>
</ul>
- <p>After release, four security vulnerabilities were identified in the
- CUPS print server. These are primarily buffer overflow vulnerabilities. To
- fix them, use the instructions in
- <a href="../../view/systemd/pst/cups.html">CUPS 2.3.1</a> to upgrade to
- CUPS-2.3.1.</p>
-
- <p>After release, several vulnerabilities were identified in Firefox.
- Several of them are rated High or Moderate. An additional one contains
- a 0-day fix for CVE-2019-17026. All users should update immediately.
- To fix these, upgrade to Firefox-68.4.1 using the instructions in
- <a href="../../view/systemd/xsoft/firefox.html">Firefox-68.4.1</a>.</p>
-
- <p>After release, a vulnerability was discovered in the version of PHP
- shipped with BLFS 9.0. The BLFS team recommends updating to the latest
version
- of PHP in the instructions here:
- <a href="../../view/systemd/general/php.html">PHP-7.3.11</a>.</p>
-
- <p>After release, several high and critical severity vulnerabilities were
- patched in Seamonkey-2.49.5. The BLFS team highly recommends updating to
- Seamonkey-2.49.5 using the instructions in
- <a
href="../../view/systemd/xsoft/seamonkey.html">Seamonkey-2.49.5</a>.</p>
-
- <p>After release, vulnerabilities were discovered in the version of Glib
- shipped with BLFS 9.0. To fix these, update to glib-2.60.7 or later
- (glib-2.62.0 is in at the time of this errata) using the instructions in
- <a href="../../view/systemd/general/glib2.html">GLib-2.60.7</a>.</p>
-
- <p>After release, a Use-After-Free vulnerability was discovered in
- gnome-bluetooth when used in gnome-shell with malicious extensions. To fix
- this, upgrade to gnome-bluetooth-3.34.0 using the instructions in
- <a
href="../../view/systemd/gnome/gnome-bluetooth.html">gnome-bluetooth-3.24.0</a>.</p>
-
- <p>After release, a vulnerability was discovered in libjpeg-turbo. To fix
this,
- upgrade to libjpeg-turbo-2.0.3 or later using the instructions in
- <a
href="../../view/systemd/general/libjpeg.html">libjpeg-turbo-2.0.3</a>.</p>
-
- <p>After release, a critical security vulnerability that allows root
access
- was discovered in Exim. The BLFS team recommends upgrading to Exim-4.92.4
- immediately to prevent exploitation. To upgrade, use the instructions in
- <a href="../../view/systemd/server/exim.html">exim-4.92.2</a>.</p>
-
- <p>After release, a use-after-free vulnerability was discoverd in
at-spi2-core.
- To fix this, upgrade using the instructions in
- <a
href="../../view/systemd/x/at-spi2-core.html">at-spi2-core-2.34.0</a>.</p>
-
- <p>After release, several high and critical vulnerabilities were
discovered in
- QtWebEngine (Chromium-based). The BLFS team recommends upgrading
immediately to
- version 5.13.1 or later. To upgrade, upgrade to Qt-5.13.2 first and then
to
- QtWebEngine-5.13.2 using the instructions in
- <a href="../../view/systemd/x/qt5.html">Qt-5.13.2</a> and
- <a href="../../view/systemd/x/qtwebengine.html">QtWebEngine-5.13.2</a>
respectively.</p>
-
- <p>After release, two vulnerabilities were discovered in cURL. These are
- double-free and heap-buffer-overflow vulnerabilities in TFTP and FTP
(with KRB)
- support. If you don't have TFTP support enabled or Kerberos support
enabled,
- disregard this notice. Otherwise, upgrade using the instructions in
- <a href="../../view/systemd/basicnet/curl.html">cURL-7.66.0</a>.</p>
-
- <p>After release, a potential Denial of Service vulnerability was
discovered
- in DHCPCD. To fix this, upgrade to the latest version using the
instructions here:
- <a href="../../view/systemd/basicnet/dhcpcd.html">dhcpcd-8.0.6</a>.</p>
-
- <p>After release, a security vulnerability was discovered in Wireshark
that could lead
- to a kernel panic or client crash when analyzing bluetooth packets. To
fix this,
- upgrade to the latest version of Wireshark using the instructions in
- <a
href="../../view/systemd/basicnet/wireshark.html">Wireshark-3.0.7</a>.</p>
-
- <p>After release, a use-after-free vulnerability was discovered in
Evolution-Data-Server that
- could lead to a denial of service condition. To fix this, upgrade to the
latest
- version of evolution-data-server and evolution using the instructions in
- <a
href="../../view/systemd/gnome/evolution-data-server.html">evolution-data-server-3.34.0</a>
and
- <a href="../../view/systemd/gnome/evolution.html">evolution-3.34.0</a>
respectively.</p>
-
- <p>After release, several vulnerabilites were discovered in the rdoc
implementation of
- Ruby. The BLFS team recommends updating to the latest version of Ruby
ASAP using the
- instrunctions in
- <a href="../../view/systemd/general/ruby.html">Ruby-2.6.5</a>.</p>
-
- <p>After release, a vulnerability was discovered in Unbound that allows
remote attackers
- to crash the process. To fix this, update to the latest version of
Unbound using the
- instructions in
- <a href="../../view/systemd/server/unbound.html">Unbound-1.9.6</a>.</p>
-
- <p>After release, an access control bypass vulnerability was discovered
in systemd-241.
- The BLFS team recommends applying the patch listed below immediately
- and rebuilding systemd, followed by a reboot:
- <a
href="http://linuxfromscratch.org/patches/downloads/systemd/systemd-241-security_patch-1.patch";>
- systemd-241-security_patch-1.patch</a>.</p>
-
- <p>After release, many new sandbox/-dSAFER escape vulnerabilities were
- discovered in Ghostscript. Unless these vulnerabilities are patched,
- PDF documents can access the filesystem outside of restricted areas
- and execute arbitrary commands. To fix these vulnerabilities, update
- to
- <a href="../../view/systemd/pst/gs.html">ghostscript-9.50</a>.</p>
-
- <p>After release, a potential restriction bypass vulnerability was
- discovered in Sudo prior to version 1.8.28. To fix this, update to
- Sudo-1.8.28 ASAP using the instructions in
- <a href="../../view/systemd/postlfs/sudo.html">sudo-1.8.28</a>.</p>
-
- <p>After release, five vulnerabilities were discovered in Python-2.7.16
- as shipped with BLFS 9.0. To fix these vulnerabilities, update to
- Python-2.7.17 using the instructions in
- <a href="../../view/systemd/general/python2.html">Python-2.7.17</a>.</p>
-
- <p>After release, a new vulnerability (which got media attention) was
- revealed in ProFTPD. This classifies as a buffer overflow vulnerability.
- To fix this vulnerability, update to ProFTPD-1.3.6b using the instructions
- in <a
href="../../view/systemd/server/proftpd.html">ProFTPD-1.3.6b</a>.</p>
-
- <p>After release, several vulnerabilities were discovered in Thunderbird.
- In addition, a zero day security flaw that was patched in Firefox also
- affects Thunderbird, and has been fixed.
- These include memory safety bugs, restriction bypasses, and a
- remote code execution bug in the iCal parser. To fix these, update to
- Thunderbird-68.4.1 using the instructions in
- <a
href="../../view/systemd/xsoft/thunderbird.html">Thunderbird-68.4.1</a>.</p>
-
- <p>After release, a security flaw was found in NSS, CVE-2019-11745.
- An additional security flaw was found that was fixed by adding extra
- encryption tests (CVE-2019-17023). To fix these,
- update to the latest version of NSS using the instructions in
- <a href="../../view/systemd/postlfs/nss.html">NSS-3.49</a>.</p>
-
- <p>After release, a security flaw was discovered in the way that SHA-1
- signatures are used in GnuPG. The SHA-1 support has been removed from
- the "Web of Trust". Please update to GnuPG-2.2.18 or later using the
- instructions in
- <a href="../../view/systemd/postlfs/gnupg.html">GnuPG-2.2.18</a> if you
- wish to still continue using GnuPG if you have a SHA-1 signature.</p>
-
- <p>After release it was discovered that many security fixes for
- unzip-6.0 were present in distros but had not been applied to BLFS.
- To fix these, rebuild unzip using the patch in
- <a href="../../view/systemd/general/unzip.html">unzip-6.0</a>.</p>
-
- <p>After release the xvid team released a new version that contained
- fixes for "various, long-standing and potentially critical security
- vulnerabilities in the decoder". To resolve this, upgrade to
- XviD-1.3.6 using the instructions in
- <a href="../../view/systemd/multimedia/xvid.html">XviD-1.3.6</a>.</p>
-
- <p>After release, a series of security flaws in all maintained versions
- of git were disclosed. These allow an attacker to overwrite arbitrary
- paths, remotely execute code, or overwrite files in the .git/ directory.
- To fix these, please update to git-2.24.1 using the instructions in
- <a href="../../view/systemd/general/git.html">git-2.24.1</a>.</p>
-
- <p>After release, a security flaw was discovered in npm, shipped with
- node.js, that leads to files being overwrited when installing packages.
- These files get overwritten in whatever prefix you are installing node in,
- and can include files in /usr/bin and /usr/sbin. This can lead to file
- deletion of files installed by other packages and other damage. Please
- update to node.js-12.14.0 as soon as possible using the instructions in
- <a href="../../view/systemd/general/nodejs.html">Node.JS-12.14.0</a>.</p>
-
- <p>After release, a series of security flaws was discovered in libarchive.
- These include security fixes in the RAR5 reader, wide string processing,
- optimizations to the write filter logic, and the use of readlink(2). To
fix
- these vulnerabilities, update to libarchive-3.4.1 or later using the
- instructions in
- <a
href="../../view/systemd/general/libarchive.html">libarchive-3.4.1</a>.</p>
-
<h2>Known Security Vulnerabilities</h2>
<p>A few packages are good at reporting that a new
@@ -184,9 +17,13 @@
virtually every new release includes security fixes. But in many cases
the fixes are not documented as security issues.</p>
- <p>Updates to the packages in the book may be available
- in the
- <a href="../../view/systemd/">development version of the book.</a>
+ <p>Updates to the packages in the book may be available in the
+ <a href="../../view/systemd/">development version of the book.</a>
</p>
+ <!-- Editors: Do not remove this entry, just comment it out. -->
+ <ul>
+ <li>There are no current known security vulnerabilities for
blfs-9.1-systemd.</li>
+ </ul>
+
<!--#include virtual="/common/footer.html" -->
Modified: html/trunk/blfs/errata/9.1/index.html
==============================================================================
--- html/trunk/blfs/errata/9.0/index.html Thu Jan 23 21:51:28 2020
(r1524)
+++ html/trunk/blfs/errata/9.1/index.html Sun Mar 1 08:25:21 2020
(r1530)
@@ -3,14 +3,11 @@
<!--#include virtual="/blfs/menu.html" -->
<div class="main">
- <h1>Errata for BLFS Version 9.0</h1>
+ <h1>Errata for BLFS Version 9.1</h1>
+ <!-- Editors: Do not remove this entry, just comment it out. -->
<ul>
- <li>After release, a problem was discovered in BIND where the
instructions
- used in the book would result in a nonexistent rndc.conf file. To fix
this,
- run "rndc-confgen -a -b 512 -t /srv/named" instead of
- "rndc-confgen -r /dev/urandom -b 512 > /etc/rndc.conf". Also,
- please modify the files to reference /etc/named instead of
/etc/namedb.</li>
+ <li>There are no current errata for blfs-9.1.</li>
</ul>
<h2>Known Security Vulnerabilities</h2>
@@ -24,171 +21,9 @@
<a href="../../view/svn/">development version of the book.</a>
</p>
- <p>After release, three security vulnerabilities were identified in the
- CUPS print server. These are primarily buffer overflow vulnerabilities. To
- fix them, use the instructions in
- <a href="../../view/svn/pst/cups.html">CUPS 2.3.1</a> to upgrade to
- CUPS-2.3.1.</p>
-
- <p>After release, several vulnerabilities were identified in Firefox.
- Several of them are rated High or Moderate. An additional one contains
- a 0-day fix for CVE-2019-17026. All users should update immediately.
- To fix these, upgrade to Firefox-68.4.1 using the instructions in
- <a href="../../view/svn/xsoft/firefox.html">Firefox-68.4.1</a>.</p>
-
- <p>After release, a vulnerability was discovered in the version of PHP
- shipped with BLFS 9.0. The BLFS team recommends updating to the latest
version
- of PHP in the instructions here:
- <a href="../../view/svn/general/php.html">PHP-7.3.11</a>.</p>
-
- <p>After release, several high and critical severity vulnerabilities were
- patched in Seamonkey-2.49.5. The BLFS team highly recommends updating to
- Seamonkey-2.49.5 using the instructions in
- <a href="../../view/svn/xsoft/seamonkey.html">Seamonkey-2.49.5</a>.</p>
-
- <p>After release, vulnerabilities were discovered in the version of Glib
- shipped with BLFS 9.0. To fix these, update to glib-2.60.7 or later
- (glib-2.62.0 is in at the time of this errata) using the instructions in
- <a href="../../view/svn/general/glib2.html">GLib-2.60.7</a>.</p>
-
- <p>After release, a Use-After-Free vulnerability was discovered in
- gnome-bluetooth when used in gnome-shell with malicious extensions. To fix
- this, upgrade to gnome-bluetooth-3.34.0 using the instructions in
- <a
href="../../view/svn/gnome/gnome-bluetooth.html">gnome-bluetooth-3.24.0</a>.</p>
-
- <p>After release, a vulnerability was discovered in libjpeg-turbo. To fix
this,
- upgrade to libjpeg-turbo-2.0.3 or later using the instructions in
- <a href="../../view/svn/general/libjpeg.html">libjpeg-turbo-2.0.3</a>.</p>
-
- <p>After release, a critical security vulnerability that allows root
access
- was discovered in Exim. The BLFS team recommends upgrading to Exim-4.92.4
- immediately to prevent exploitation. To upgrade, use the instructions in
- <a href="../../view/svn/server/exim.html">exim-4.92.2</a>.</p>
-
- <p>After release, a use-after-free vulnerability was discoverd in
at-spi2-core.
- To fix this, upgrade using the instructions in
- <a href="../../view/svn/x/at-spi2-core.html">at-spi2-core-2.34.0</a>.</p>
-
- <p>After release, several high and critical vulnerabilities were
discovered in
- QtWebEngine (Chromium-based). The BLFS team recommends upgrading
immediately to
- version 5.13.2 or later. To upgrade, upgrade to Qt-5.13.2 first and then
to
- QtWebEngine-5.13.2 using the instructions in
- <a href="../../view/svn/x/qt5.html">Qt-5.13.2</a> and
- <a href="../../view/svn/x/qtwebengine.html">QtWebEngine-5.13.2</a>
respectively.</p>
-
- <p>After release, two vulnerabilities were discovered in cURL. These are
- double-free and heap-buffer-overflow vulnerabilities in TFTP and FTP
(with KRB)
- support. If you don't have TFTP support enabled or Kerberos support
enabled,
- disregard this notice. Otherwise, upgrade using the instructions in
- <a href="../../view/svn/basicnet/curl.html">cURL-7.66.0</a>.</p>
-
- <p>After release, a potential Denial of Service vulnerability was
discovered
- in DHCPCD. To fix this, upgrade to the latest version using the
instructions here:
- <a href="../../view/svn/basicnet/dhcpcd.html">dhcpcd-8.0.6</a>.</p>
-
- <p>After release, a security vulnerability was discovered in Wireshark
that could lead
- to a kernel panic or client crash when analyzing bluetooth packets. To
fix this,
- upgrade to the latest version of Wireshark using the instructions in
- <a href="../../view/svn/basicnet/wireshark.html">Wireshark-3.0.7</a>.</p>
-
- <p>After release, a use-after-free vulnerability was discovered in
Evolution-Data-Server that
- could lead to a denial of service condition. To fix this, upgrade to the
latest
- version of evolution-data-server and evolution using the instructions in
- <a
href="../../view/svn/gnome/evolution-data-server.html">evolution-data-server-3.34.0</a>
and
- <a href="../../view/svn/gnome/evolution.html">evolution-3.34.0</a>
respectively.</p>
-
- <p>After release, several vulnerabilites were discovered in the rdoc
implementation of
- Ruby. The BLFS team recommends updating to the latest version of Ruby
ASAP using the
- instrunctions in
- <a href="../../view/svn/general/ruby.html">Ruby-2.6.5</a>.</p>
-
- <p>After release, a vulnerability was discovered in Unbound that allows
remote attackers
- to crash the process. To fix this, update to the latest version of
Unbound using the
- instructions in
- <a href="../../view/svn/server/unbound.html">Unbound-1.9.6</a>.</p>
-
- <p>After release, many new sandbox/-dSAFER escape vulnerabilities were
- discovered in Ghostscript. Unless these vulnerabilities are patched,
- PDF documents can access the filesystem outside of restricted areas
- and execute arbitrary commands. To fix these vulnerabilities, update
- to
- <a href="../../view/svn/pst/gs.html">ghostscript-9.50</a>.</p>
-
- <p>After release, a potential restriction bypass vulnerability was
- discovered in Sudo prior to version 1.8.28. To fix this, update to
- Sudo-1.8.28 ASAP using the instructions in
- <a href="../../view/svn/postlfs/sudo.html">sudo-1.8.28</a>.</p>
-
- <p>After release, five vulnerabilities were discovered in Python-2.7.16
- as shipped with BLFS 9.0. To fix these vulnerabilities, update to
- Python-2.7.17 using the instructions in
- <a href="../../view/svn/general/python2.html">Python-2.7.17</a>.</p>
-
- <p>After release, a new vulnerability (which got media attention) was
- revealed in ProFTPD. This classifies as a buffer overflow vulnerability.
- To fix this vulnerability, update to ProFTPD-1.3.6b using the instructions
- in <a href="../../view/svn/server/proftpd.html">ProFTPD-1.3.6b</a>.</p>
-
- <p>After release, several vulnerabilities were discovered in Thunderbird.
- In addition, a zero day security flaw that was patched in Firefox also
- affects Thunderbird, and has been fixed.
- These include memory safety bugs, restriction bypasses, and a
- remote code execution bug in the iCal parser. To fix these, update to
- Thunderbird-68.4.1 using the instructions in
- <a
href="../../view/svn/xsoft/thunderbird.html">Thunderbird-68.4.1</a>.</p>
-
- <p>After release, a security flaw was found in NSS, CVE-2019-11745.
- An additional security flaw was found that was fixed by adding extra
- encryption tests (CVE-2019-17023). To fix these,
- update to the latest version of NSS using the instructions in
- <a href="../../view/svn/postlfs/nss.html">NSS-3.49</a>.</p>
-
- <p>After release, a security flaw was discovered in the way that SHA-1
- signatures are used in GnuPG. The SHA-1 support has been removed from
- the "Web of Trust". Please update to GnuPG-2.2.18 or later using the
- instructions in
- <a href="../../view/svn/postlfs/gnupg.html">GnuPG-2.2.18</a> if you
- wish to still continue using GnuPG if you have a SHA-1 signature.</p>
-
- <p>After release it was discovered that many security fixes for
- unzip-6.0 were present in distros but had not been applied to BLFS.
- To fix these, rebuild unzip using the patch in
- <a href="../..//view/svn/general/unzip.html">unzip-6.0</a>.</p>
-
- <p>After release the xvid team released a new version that contained
- fixes for "various, long-standing and potentially critical security
- vulnerabilities in the decoder". To resolve this, upgrade to
- XviD-1.3.6 using the instructions in
- <a href="../../view/svn/multimedia/xvid.html">XviD-1.3.6</a>.</p>
-
- <p>After release, a series of security flaws in all maintained versions
- of git were disclosed. These allow an attacker to overwrite arbitrary
- paths, remotely execute code, or overwrite files in the .git/ directory.
- To fix these, please update to git-2.24.1 using the instructions in
- <a href="../../view/svn/general/git.html">git-2.24.1</a>.</p>
-
- <p>After release, a security flaw was discovered in npm, shipped with
- node.js, that leads to files being overwrited when installing packages.
- These files get overwritten in whatever prefix you are installing node in,
- and can include files in /usr/bin and /usr/sbin. This can lead to file
- deletion of files installed by other packages and other damage. Please
- update to node.js-12.14.0 as soon as possible using the instructions in
- <a href="../../view/svn/general/nodejs.html">Node.JS-12.14.0</a>.</p>
-
- <p>After release, a series of security flaws was discovered in libarchive.
- These include security fixes in the RAR5 reader, wide string processing,
- optimizations to the write filter logic, and the use of readlink(2). To
fix
- these vulnerabilities, update to libarchive-3.4.1 or later using the
- instructions in
- <a href="../../view/svn/general/libarchive.html">libarchive-3.4.1</a>.</p>
-
-<!--
- <p>A vulnerability with available exploits in all recent versions of
- ghostscript has been fixed in the development book by patching gs-9.25.
- The current version of the patch is -2 and the vulnerability applies to
- PDF files as well as postscript.</p>
+ <!-- Editors: Do not remove this entry, just comment it out. -->
+ <ul>
+ <li>There are no current known security vulnerabilities for
blfs-9.1.</li>
+ </ul>
- <p>A trivially-exploitable local privilege escalation in versions of
- xorg-server since 1.19 has been fixed in 1.20.3.</p>
--->
<!--#include virtual="/common/footer.html" -->
Modified: html/trunk/blfs/errata/stable
==============================================================================
--- html/trunk/blfs/errata/stable Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/blfs/errata/stable Sun Mar 1 08:25:21 2020 (r1530)
@@ -1 +1 @@
-link 9.0
\ No newline at end of file
+link 9.1
\ No newline at end of file
Modified: html/trunk/blfs/errata/stable-systemd
==============================================================================
--- html/trunk/blfs/errata/stable-systemd Sat Feb 22 08:21:12 2020
(r1529)
+++ html/trunk/blfs/errata/stable-systemd Sun Mar 1 08:25:21 2020
(r1530)
@@ -1 +1 @@
-link 9.0-systemd
\ No newline at end of file
+link 9.1-systemd
\ No newline at end of file
Modified: html/trunk/blfs/news.html
==============================================================================
--- html/trunk/blfs/news.html Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/blfs/news.html Sun Mar 1 08:25:21 2020 (r1530)
@@ -5,6 +5,31 @@
<h1>BLFS News</h1>
<dl class="newsItem">
+ <dt>BLFS 9.1 has been released!</dt>
+ <dd><em>Bruce Dubbs - 2020/03/01</em>
+
+ <p>The BLFS Team is proud to present version 9.1
+ of Beyond Linux From Scratch. This version includes approximately
+ 1000 packages beyond the base Linux From Scratch Version 9.1 book.
+ The book has 840 updates from the previous version plus many
+ other text and formatting changes.</p>
+
+ <p>The System V version of the book includes the Gnome,
+ KDE/plasma, xfce, and lxde environments.</p>
+
+ <p>This is a coordinated release with BLFS-9.1-systemd.</p>
+
+ <p>You can view the 9.1 version at <a href="./view/9.1">online</a>
+ or <a href="./downloads/9.1/">download</a> to read locally.</p>
+
+ <p>You can view the 9.1 systemd version at
+ <a href="./view/9.1-systemd">online systemd</a> or
+ <a href="./downloads/9.1-systemd/">download-systemd</a> to
+ read locally.</p>
+ </dd>
+ </dl>
+
+ <dl class="newsItem">
<dt>BLFS 9.0 has been released!</dt>
<dd><em>Bruce Dubbs - 2019/09/01</em>
Modified: html/trunk/blfs/read.html
==============================================================================
--- html/trunk/blfs/read.html Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/blfs/read.html Sun Mar 1 08:25:21 2020 (r1530)
@@ -35,7 +35,7 @@
<h2>Current Stable</h2>
<p>This is the latest released BLFS Book.</p>
- <p><a href="view/stable/">BLFS Version 9.0 (HTML)</a></p>
+ <p><a href="view/stable/">BLFS Version 9.1 (HTML)</a></p>
<p>As a result of bugs and security warnings, please be sure to read the
errata page for any modifications needed to BLFS applications.</p>
@@ -54,7 +54,7 @@
<h2>Current Stable</h2>
<p>The is the latest version of the book based on systemd management.</p>
- <p><a href="view/stable-systemd/">BLFS Version 9.0 (HTML)</a></p>
+ <p><a href="view/stable-systemd/">BLFS Version 9.1 (HTML)</a></p>
<p>As a result of bugs and security warnings, please be sure to read the
errata page for any modifications needed to BLFS applications.</p>
Modified: html/trunk/lfs/download.html
==============================================================================
--- html/trunk/lfs/download.html Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/lfs/download.html Sun Mar 1 08:25:21 2020 (r1530)
@@ -11,7 +11,7 @@
enough for everyday use.</p>
<p>You may download the stable book in various formats from the
<a href="/lfs/downloads/stable/">stable book</a> directory.</p>
-
+<!--
<h2>Current Release Candidate Version — LFS-9.1-rc1</h2>
<p>This is a soon-to-be-released LFS book undergoing the last
stages of testing.</p>
@@ -19,7 +19,7 @@
<p>You may download the book from the
<a href="/lfs/downloads/9.1-rc1/">LFS-9.1-rc1</a> directory.
</p>
-
+-->
<h2>Current Development</h2>
<p>This is the LFS Book in its current development state. Changes can
happen that break the build temporarily.<br />
@@ -43,7 +43,7 @@
enough for everyday use.</p>
<p>You may download the stable book in various formats from the
<a href="/lfs/downloads/stable-systemd/">stable book</a> directory.</p>
-
+<!--
<h3>Current Pre-release Version — LFS-9.1-systemd-rc1</h3>
<p>This is a variation of LFS. It will be released as
@@ -57,7 +57,7 @@
<p>You may download the book from the
<a href="/lfs/downloads/9.1-systemd-rc1/">LFS-9.1-systemd-rc1</a>
directory.
</p>
-
+-->
<h2>Current Development</h2>
<p>This is the LFS systemd Book in its current development state. Changes
can
happen that break the build temporarily.<br />
Modified: html/trunk/lfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/lfs/errata/9.0-systemd/index.html Thu Jan 23 21:51:28
2020 (r1524)
+++ html/trunk/lfs/errata/9.1-systemd/index.html Sun Mar 1 08:25:21
2020 (r1530)
@@ -2,7 +2,7 @@
<!--#include virtual="/lfs/header.html" -->
<!--#include virtual="/lfs/menu.html" -->
<div class="main">
- <h1>Errata for the 9.0-systemd Version of the LFS Book</h1>
+ <h1>Errata for the 9.1-systemd Version of the LFS Book</h1>
<!-- TEMPLATE
<h2>Known Security Vulnerabilities</h2>
@@ -20,22 +20,14 @@
END TEMPLATE -->
- <h2>Known Security Vulnerabilities</h2>
- <ul>
- <li>OpenSSL: CVE-2019-1549, CVE-2019-1563, CVE-2019-1547
- (Medium to Low). Upgrade to OpenSSL-1.1.1d using the instructions
in
- <a
href="../../view/development/chapter06/openssl.html">OpenSSL-1.1.1d</a>.</li>
- <li>e2fsprogs: CVE-2019-5094 (buffer overruns in e2fsck).
- Update to e2fsprogs-1.45.4 or later using the instructions in
- <a
href="../../view/development/chapter06/e2fsprogs.html">e2fsprogs-1.45.4</a>.</li>
- <li>systemd: CVE-2019-6454 (access control bypass). Apply
- <a
href="http://linuxfromscratch.org/patches/downloads/systemd/systemd-241-security_patch-1.patch";>
- systemd-241-security_patch-1.patch</a> to systemd and
rebuild.</p></li>
- </ul>
+ <h2>Known Security Vulnerabilities</h2>
+ <ul>
+ <li>There are no current security vulnerabilities items for LFS
9.1-systemd.</li>
+ </ul>
<h2>Miscellaneous Errata</h2>
<ul>
- <li>There are no current errata items for LFS 9.0-systemd.</li>
+ <li>There are no current errata items for LFS 9.1-systemd.</li>
</ul>
Modified: html/trunk/lfs/errata/9.1/index.html
==============================================================================
--- html/trunk/lfs/errata/9.0/index.html Thu Jan 23 21:51:28 2020
(r1524)
+++ html/trunk/lfs/errata/9.1/index.html Sun Mar 1 08:25:21 2020
(r1530)
@@ -2,7 +2,7 @@
<!--#include virtual="/lfs/header.html" -->
<!--#include virtual="/lfs/menu.html" -->
<div class="main">
- <h1>Errata for the 9.0 Version of the LFS Book</h1>
+ <h1>Errata for the 9.1 Version of the LFS Book</h1>
<!-- TEMPLATE
<h2>Known Security Vulnerabilities</h2>
@@ -22,17 +22,12 @@
<h2>Known Security Vulnerabilities</h2>
<ul>
- <li>OpenSSL: CVE-2019-1549, CVE-2019-1563, CVE-2019-1547
- (Medium to Low). Upgrade to OpenSSL-1.1.1d using the instructions
in
- <a
href="../../view/development/chapter06/openssl.html">OpenSSL-1.1.1d</a>.</li>
- <li>e2fsprogs: CVE-2019-5094 (buffer overruns in e2fsck).
- Update to e2fsprogs-1.45.4 or later using the instructions in
- <a
href="../../view/development/chapter06/e2fsprogs.html">e2fsprogs-1.45.4</a>.</li>
+ <li>There are no current security vulnerabilities items for LFS
9.1.</li>
</ul>
<h2>Miscellaneous Errata</h2>
<ul>
- <li>There are no current errata items for LFS 9.0.</li>
+ <li>There are no current errata items for LFS 9.1.</li>
</ul>
Modified: html/trunk/lfs/errata/stable
==============================================================================
--- html/trunk/lfs/errata/stable Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/lfs/errata/stable Sun Mar 1 08:25:21 2020 (r1530)
@@ -1 +1 @@
-link 9.0
\ No newline at end of file
+link 9.1
\ No newline at end of file
Modified: html/trunk/lfs/errata/stable-systemd
==============================================================================
--- html/trunk/lfs/errata/stable-systemd Sat Feb 22 08:21:12 2020
(r1529)
+++ html/trunk/lfs/errata/stable-systemd Sun Mar 1 08:25:21 2020
(r1530)
@@ -1 +1 @@
-link 9.0-systemd
\ No newline at end of file
+link 9.1-systemd
\ No newline at end of file
Modified: html/trunk/lfs/errata/systemd
==============================================================================
--- html/trunk/lfs/errata/systemd Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/lfs/errata/systemd Sun Mar 1 08:25:21 2020 (r1530)
@@ -1 +1 @@
-link 9.0-systemd
\ No newline at end of file
+link 9.1-systemd
\ No newline at end of file
Modified: html/trunk/lfs/news.html
==============================================================================
--- html/trunk/lfs/news.html Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/lfs/news.html Sun Mar 1 08:25:21 2020 (r1530)
@@ -4,6 +4,47 @@
<div class="main">
<h1>LFS News</h1>
<dl class="newsItem">
+ <dt>LFS Stable Version 9.1 Release</dt>
+ <dd><em>Bruce Dubbs - 2020/03/01</em>
+
+ <p>The Linux From Scratch community announces the release of LFS
+ Version 9.1.
+
+ Major changes include toolchain updates to glibc-2.31,
+ and binutils-2.34. A new package, zstd-1.4.4, has also
+ been added.
+
+ In total, 35 packages were updated since the last release.
+ Changes to the text have also been made throughout the book.
+
+ The Linux kernel has also been updated to version 5.2.8.</p>
+
+ <p>You can read the book
+ <a href="/lfs/view/9.1/">online</a>, or
+ <a href="/lfs/downloads/9.1/">download</a> to read locally.
+ </p>
+
+ <p>In coordination with this release, a new version of
+ LFS using the systemd package is also being released.
+ This package implements the newer systemd style of
+ system initialization and control and is consistent with
+ LFS in most packages.
+
+ <p>You can read the systemd version of the book online at
+ <a href="/lfs/view/9.1-systemd/">LFS-systemd</a>, or
+ <a href="/lfs/downloads/9.1-systemd/">download-systemd</a> to
read locally.
+ </p>
+
+ <p>Please direct any comments about this release to the LFS
+ development team at
+ <a
href="mailto:lfs-dev@lists.linuxfromscratch.org";>lfs-dev@lists.linuxfromscratch.org</a>.
+ Please note that registration for the lfs-dev
+ mailing list is required to avoid junk email.
+ </p>
+ </dd>
+ </dl>
+
+ <dl class="newsItem">
<dt>LFS 9.1-rc1 Release</dt>
<dd><em>Bruce Dubbs - 2020/02/14</em>
Modified: html/trunk/lfs/read.html
==============================================================================
--- html/trunk/lfs/read.html Sat Feb 22 08:21:12 2020 (r1529)
+++ html/trunk/lfs/read.html Sun Mar 1 08:25:21 2020 (r1530)
@@ -14,7 +14,7 @@
the errata page for any modifications needed to the LFS build.</p>
<p><a href="errata/stable/">Stable LFS Errata</a></p>
<p><a href="view/stable/">Stable LFS</a> </p>
-
+<!--
<h2>Current Pre-release Version — LFS-9.1-rc1</h2>
<p>This is the upcoming version of LFS. It has been marked for release as
@@ -24,7 +24,7 @@
undergoes testing.</p>
<p><a href="view/9.1-rc1/">LFS-9.1-rc1</a></p>
-
+-->
<!-- Note that a pre-release version of the book does not always
exist but is created when an upcoming release has been identified and
scheduled.-->
@@ -54,7 +54,7 @@
the errata page for any modifications needed to the LFS systemd build.</p>
<p><a href="errata/stable-systemd/">Stable LFS systemd Errata</a></p>
<p><a href="view/stable-systemd/">Stable LFS systemd</a> </p>
-
+<!--
<h3>Current Pre-release Version — LFS-9.1-systemd-rc1</h3>
<p>This is an upcoming variation of LFS. It will be released as
@@ -66,7 +66,7 @@
undergoes testing.</p>
<p><a href="view/9.1-systemd-rc1/">LFS-9.1-systemd-rc1</a></p>
-
+-->
<h2>Current Development</h2>
<p>This is the LFS systemd Book in its current development state. Whilst
it may
provide more features and updated upstream packages than the stable
--
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
