Tue Sep 19 20:49:07 UTC 2017

l/freetype-2.8-x86_64-1.txz:  Upgraded.
  Reverted due to rendering issues with programs such as Firefox that violate
  the Freetype API. We'll revisit this after upstream programs have some time
  to catch up.
x/libinput-1.8.2-x86_64-1.txz:  Upgraded.

4 files changed, 47 insertions, 1 deletions

diff --git a/ChangeLog.txt.old b/ChangeLog.txt.old
index 9e006ff35..30a67e720 100644
--- a/ChangeLog.txt.old
+++ b/ChangeLog.txt.old
@@ -1,3 +1,36 @@
+Mon Sep 18 19:15:03 UTC 2017
+a/eudev-3.2.4-x86_64-1.txz:  Upgraded.
+a/libgudev-232-x86_64-1.txz:  Upgraded.
+a/usb_modeswitch-2.5.1-x86_64-1.txz:  Upgraded.
+ap/man-pages-4.13-noarch-1.txz:  Upgraded.
+d/cmake-3.9.2-x86_64-1.txz:  Upgraded.
+d/ruby-2.4.2-x86_64-1.txz:  Upgraded.
+  This release includes several security fixes.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0898
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0899
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0900
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0901
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0902
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10784
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14033
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14064
+  (* Security fix *)
+l/akonadi-1.13.0-x86_64-6.txz:  Rebuilt.
+  Fixed using akonadi with an external database. Thanks to Heinz Wiesinger.
+l/freetype-2.8.1-x86_64-1.txz:  Upgraded.
+n/httpd-2.4.27-x86_64-3.txz:  Rebuilt.
+  This update patches a security issue ("Optionsbleed") with the OPTIONS http
+  method which may leak arbitrary pieces of memory to a potential attacker.
+  Thanks to Hanno Bo:ck.
+  For more information, see:
+    http://seclists.org/oss-sec/2017/q3/477
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9798
+  (* Security fix *)
+x/fontconfig-2.12.5-x86_64-1.txz:  Upgraded.
+x/mesa-17.2.1-x86_64-1.txz:  Upgraded.
+x/xf86-input-libinput-0.26.0-x86_64-1.txz:  Upgraded.
++--------------------------+
 Fri Sep 15 17:31:57 UTC 2017
 a/kernel-firmware-20170914git-noarch-1.txz:  Upgraded.
 a/kernel-generic-4.9.50-x86_64-1.txz:  Upgraded.
@@ -255,6 +288,12 @@ n/bsd-finger-0.17-x86_64-2.txz:  Rebuilt.
   Patched to fix segfault with glibc-2.26.
   Thanks to Karl Magnus Kolstø.
 n/libgcrypt-1.8.1-x86_64-1.txz:  Upgraded.
+  Mitigate a local side-channel attack on Curve25519 dubbed "May
+  the Fourth be With You".
+  For more information, see:
+    https://eprint.iacr.org/2017/806
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0379
+  (* Security fix *)
 x/mesa-17.1.8-x86_64-1.txz:  Upgraded.
 +--------------------------+
 Fri Aug 25 18:38:28 UTC 2017
diff --git a/slackware64-current/ChangeLog.txt b/slackware64-current/ChangeLog.txt
index 30a67e720..564501752 100644
--- a/slackware64-current/ChangeLog.txt
+++ b/slackware64-current/ChangeLog.txt
@@ -1,3 +1,10 @@
+Tue Sep 19 20:49:07 UTC 2017
+l/freetype-2.8-x86_64-1.txz:  Upgraded.
+  Reverted due to rendering issues with programs such as Firefox that violate
+  the Freetype API. We'll revisit this after upstream programs have some time
+  to catch up.
+x/libinput-1.8.2-x86_64-1.txz:  Upgraded.
++--------------------------+
 Mon Sep 18 19:15:03 UTC 2017
 a/eudev-3.2.4-x86_64-1.txz:  Upgraded.
 a/libgudev-232-x86_64-1.txz:  Upgraded.
diff --git a/slackware64-current/source/x/libinput/libinput-1.8.1.tar.xz.sig b/slackware64-current/source/x/libinput/libinput-1.8.1.tar.xz.sig
deleted file mode 100644
index d1e632aff..000000000
--- a/slackware64-current/source/x/libinput/libinput-1.8.1.tar.xz.sig
+++ /dev/null
@@ -1 +0,0 @@
-17bc54b255215a90087d2abb4f2e8f966beb52b5
diff --git a/slackware64-current/source/x/libinput/libinput-1.8.2.tar.xz.sig b/slackware64-current/source/x/libinput/libinput-1.8.2.tar.xz.sig
new file mode 100644
index 000000000..a2d4092a6
--- /dev/null
+++ b/slackware64-current/source/x/libinput/libinput-1.8.2.tar.xz.sig
@@ -0,0 +1 @@
+bd86822e9e1c97c4584872d1bd00e2c6c698de03