blender-3.0.1-x86_64-1_ap.txz: Upgraded.
a/kernel-generic-6.18.28-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
xfrm: esp: avoid in-place decrypt on shared skb frags.
This update addresses a Linux kernel local privilege escalation attack known
as "Dirty Frag." Please note that there's a second CVE (CVE-2026-43500) that
is not yet patched upstream.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away you may blacklist or remove the kernel modules esp4.ko and esp6.ko
(CVE-2026-43284) and rxrpc.ko (CVE-2026-43500).
Also remove the modules from the kernel if they have been loaded:
rmmod esp4 esp6 rxrpc
And, drop the file caches in case in-memory program copies have already
been compromised. Make sure possibly affected programs do not have any
open sessions first:
sh -c "echo 3 > /proc/sys/vm/drop_caches"
For more information, see:
https://github.com/V4bel/dirtyfrag
https://www.cve.org/CVERecord?id=CVE-2026-43284
(* Security fix *)
d/google-go-lang-1.26.3-x86_64-1.txz: Upgraded.
d/kernel-headers-6.18.28-x86-1.txz: Upgraded.
k/kernel-source-6.18.28-noarch-1.txz: Upgraded.
l/pycurl-7.46.0-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2026.5.7.17-x86_64-1.txz: Upgraded.
n/fetchmail-6.6.4-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-140.10.2esr-x86_64-1.txz: Upgraded.
y/nethack-5.0.0-x86_64-4.txz: Rebuilt.
Another fix for the HACK= sed substitution. Should be good now! :-)
Thanks to zapwai.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-7.0.x/kernel-generic-7.0.5-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
xfrm: esp: avoid in-place decrypt on shared skb frags.
This update addresses a Linux kernel local privilege escalation attack known
as "Dirty Frag." Please note that there's a second CVE (CVE-2026-43500) that
is not yet patched upstream.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away you may blacklist or remove the kernel modules esp4.ko and esp6.ko
(CVE-2026-43284) and rxrpc.ko (CVE-2026-43500).
Also remove the modules from the kernel if they have been loaded:
rmmod esp4 esp6 rxrpc
And, drop the file caches in case in-memory program copies have already
been compromised. Make sure possibly affected programs do not have any
open sessions first:
sh -c "echo 3 > /proc/sys/vm/drop_caches"
For more information, see:
https://github.com/V4bel/dirtyfrag
https://www.cve.org/CVERecord?id=CVE-2026-43284
(* Security fix *)
testing/packages/linux-7.0.x/kernel-headers-7.0.5-x86-1.txz: Upgraded.
testing/packages/linux-7.0.x/kernel-source-7.0.5-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20260507_b3d71e9-noarch-1.txz: Upgraded.
a/kernel-generic-6.18.27-x86_64-1.txz: Upgraded.
a/xfsprogs-7.0.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.18.27-x86-1.txz: Upgraded.
d/mercurial-7.2.2-x86_64-1.txz: Upgraded.
k/kernel-source-6.18.27-noarch-1.txz: Upgraded.
l/mozjs140-140.10.2esr-x86_64-1.txz: Upgraded.
l/openjph-0.27.1-x86_64-1.txz: Upgraded.
l/python-urllib3-2.7.0-x86_64-1.txz: Upgraded.
n/libgpg-error-1.61-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Fix possible stack overflow in es_printf for %.100f format.
Fix out-of-bounds read in vfnameconcat.
(* Security fix *)
n/php-8.4.21-x86_64-1.txz: Upgraded.
This update fixes security issues:
DOM: Fixed Dom\XMLDocument::C14N() emits duplicate xmlns declarations after
setAttributeNS().
FPM: Fixed XSS within status endpoint.
MBString: Fixed Null pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init().
MBString: Fixed Out-of-bounds access in mbfl_name2encoding_ex().
PDO_Firebird: Fixed SQL injection via NUL bytes in quoted strings.
SOAP: Fixed Stale SOAP_GLOBAL(ref_map) pointer with Apache Map.
SOAP: Fixed Use-after-free after header parsing failure with
SOAP_PERSISTENCE_SESSION.
SOAP: Fixed Broken Apache map value NULL check.
Standard: Fixed Signed integer overflow of char array offset.
Standard: Fixed Consistently pass unsigned char to ctype.h functions.
URI: Fixed uriparser before 1.0.1 has numeric truncation in text range comparison.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.4.21
https://www.cve.org/CVERecord?id=CVE-2026-7263
https://www.cve.org/CVERecord?id=CVE-2026-6735
https://www.cve.org/CVERecord?id=CVE-2026-7259
https://www.cve.org/CVERecord?id=CVE-2026-6104
https://www.cve.org/CVERecord?id=CVE-2025-14179
https://www.cve.org/CVERecord?id=CVE-2026-6722
https://www.cve.org/CVERecord?id=CVE-2026-7261
https://www.cve.org/CVERecord?id=CVE-2026-7262
https://www.cve.org/CVERecord?id=CVE-2026-7568
https://www.cve.org/CVERecord?id=CVE-2026-7258
https://www.cve.org/CVERecord?id=CVE-2026-42371
(* Security fix *)
xap/mozilla-firefox-140.10.2esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.10.2/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2026-41
https://www.cve.org/CVERecord?id=CVE-2026-8090
https://www.cve.org/CVERecord?id=CVE-2026-8094
https://www.cve.org/CVERecord?id=CVE-2026-8092
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-7.0.x/kernel-generic-7.0.4-x86_64-1.txz: Upgraded.
testing/packages/linux-7.0.x/kernel-headers-7.0.4-x86-1.txz: Upgraded.
testing/packages/linux-7.0.x/kernel-source-7.0.4-noarch-1.txz: Upgraded.
testing/packages/php-8.5.6-x86_64-1.txz: Upgraded.
This update fixes security issues:
DOM: Fixed Dom\XMLDocument::C14N() emits duplicate xmlns declarations after
setAttributeNS().
FPM: Fixed XSS within status endpoint.
MBString: Fixed Null pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init().
MBString: Fixed Out-of-bounds access in mbfl_name2encoding_ex().
PDO_Firebird: Fixed SQL injection via NUL bytes in quoted strings.
SOAP: Fixed Stale SOAP_GLOBAL(ref_map) pointer with Apache Map.
SOAP: Fixed Use-after-free after header parsing failure with
SOAP_PERSISTENCE_SESSION.
SOAP: Fixed Broken Apache map value NULL check.
Standard: Fixed Signed integer overflow of char array offset.
Standard: Fixed Consistently pass unsigned char to ctype.h functions.
URI: Fixed uriparser before 1.0.1 has numeric truncation in text range comparison.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.5.6
https://www.cve.org/CVERecord?id=CVE-2026-7263
https://www.cve.org/CVERecord?id=CVE-2026-6735
https://www.cve.org/CVERecord?id=CVE-2026-7259
https://www.cve.org/CVERecord?id=CVE-2026-6104
https://www.cve.org/CVERecord?id=CVE-2025-14179
https://www.cve.org/CVERecord?id=CVE-2026-6722
https://www.cve.org/CVERecord?id=CVE-2026-7261
https://www.cve.org/CVERecord?id=CVE-2026-7262
https://www.cve.org/CVERecord?id=CVE-2026-7568
https://www.cve.org/CVERecord?id=CVE-2026-7258
https://www.cve.org/CVERecord?id=CVE-2026-42371
(* Security fix *)
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/AMF-headers-1.5.2-noarch-1.txz: Upgraded.
d/llvm-22.1.5-x86_64-1.txz: Upgraded.
kde/okteta-0.26.27-x86_64-1.txz: Upgraded.
l/djvulibre-3.5.30-x86_64-1.txz: Upgraded.
l/lcms2-2.19.1-x86_64-1.txz: Upgraded.
l/libclc-22.1.5-x86_64-1.txz: Upgraded.
x/mesa-26.1.0-x86_64-1.txz: Upgraded.
y/nethack-5.0.0-x86_64-3.txz: Rebuilt.
Fixed some paths / perms.
Thanks to zapwai.
This batch brings a number of kernel and installer updates. The first pass of
SD card decoupling on the Raspberry Pi is now complete -- allowing the OS to
boot directly from a USB-connected SSD (or whatever block storage you're using)
without an SD card present. This has been tested and confirmed working.
Install-time instructions will follow in the coming weeks.
If you appreciate what we're doing with Slackware Linux on ARM, please consider
making a donation to support the project. Contributions go directly toward
maintaining essential build hardware, covering electricity costs, and keeping
this long-running labour of love alive and moving forward.
Every bit helps and is genuinely appreciated.
You can find out how to contribute here:
https://arm.slackware.com/sponsor/
Thank you for your continued support!
Stuart Winter <mozes@slackware>
Brent Earl <el0226@slackware>
a/kernel-firmware-20260507_b3d71e9-noarch-1.txz: Upgraded.
a/kernel_armv8-6.18.28-aarch64-1.txz: Upgraded.
This kernel update addresses a security vulnerability in the ESP (Encapsulating
Security Payload) subsystem. When MSG_SPLICE_PAGES is used to attach pipe-backed
pages directly to an skb, IPv4/IPv6 UDP datagram paths were not marking those
frags as SKBFL_SHARED_FRAG, unlike the equivalent TCP path. This caused ESP
input to take an unsafe fast path and decrypt in-place over memory not privately
owned by the skb -- potentially corrupting shared pipe pages or allowing
unintended data exposure in ESP-in-UDP configurations.
The fix aligns UDP splice frag handling with TCP by setting SKBFL_SHARED_FRAG
appropriately, and adds a guard in ESP input to fall back to skb_cow_data()
when shared frags are present.
No CVE assigned at time of release.
For more information, see:
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=f4c50a4034e62ab75f1d5cdd191dd5f9c77fdff4
(* Security fix *)
/boot/platform/aarch64/helper/pkg-kernel-rpi: Use a new variable exported from
the parent /install/doinst.sh to reference the OS file system path, allowing
Raspberry Pi bootware to be installed into a bootware file system that resides
on a separate device from the Slackware ARM Installer SD card (for the install
path where the Installer SD card isn't repurposed as the RPi bootware file
system).
Without this, the DTBs aren't copied into place and the system won't boot.
/boot/initrd/[/load_kernel_modules.scr/platform/aarch64/rockchip]: Set the
"lima" module as one of the core modules to be loaded on the RockChip
platform. This is required on the PineBook Pro.
Thanks to jloco.
a/xfsprogs-7.0.0-aarch64-1.txz: Upgraded.
d/AMF-headers-1.5.2-noarch-1.txz: Upgraded.
d/kernel-headers-6.18.28-aarch64-1.txz: Upgraded.
d/llvm-22.1.5-aarch64-1.txz: Upgraded.
d/mercurial-7.2.2-aarch64-1.txz: Upgraded.
k/kernel-source-6.18.28-aarch64-1.txz: Upgraded.
kde/okteta-0.26.27-aarch64-1.txz: Upgraded.
l/djvulibre-3.5.30-aarch64-1.txz: Upgraded.
l/lcms2-2.19.1-aarch64-1.txz: Upgraded.
l/libclc-22.1.5-aarch64-1.txz: Upgraded.
l/mozjs140-140.10.2esr-aarch64-1.txz: Upgraded.
l/openjph-0.27.1-aarch64-1.txz: Upgraded.
l/python-urllib3-2.7.0-aarch64-1.txz: Upgraded.
n/libgpg-error-1.61-aarch64-1.txz: Upgraded.
This update fixes bugs and security issues:
Fix possible stack overflow in es_printf for %.100f format.
Fix out-of-bounds read in vfnameconcat.
(* Security fix *)
n/php-8.4.21-aarch64-1.txz: Upgraded.
This update fixes security issues:
DOM: Fixed Dom\XMLDocument::C14N() emits duplicate xmlns declarations after
setAttributeNS().
FPM: Fixed XSS within status endpoint.
MBString: Fixed Null pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init().
MBString: Fixed Out-of-bounds access in mbfl_name2encoding_ex().
PDO_Firebird: Fixed SQL injection via NUL bytes in quoted strings.
SOAP: Fixed Stale SOAP_GLOBAL(ref_map) pointer with Apache Map.
SOAP: Fixed Use-after-free after header parsing failure with
SOAP_PERSISTENCE_SESSION.
SOAP: Fixed Broken Apache map value NULL check.
Standard: Fixed Signed integer overflow of char array offset.
Standard: Fixed Consistently pass unsigned char to ctype.h functions.
URI: Fixed uriparser before 1.0.1 has numeric truncation in text range comparison.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.4.21
https://www.cve.org/CVERecord?id=CVE-2026-7263
https://www.cve.org/CVERecord?id=CVE-2026-6735
https://www.cve.org/CVERecord?id=CVE-2026-7259
https://www.cve.org/CVERecord?id=CVE-2026-6104
https://www.cve.org/CVERecord?id=CVE-2025-14179
https://www.cve.org/CVERecord?id=CVE-2026-6722
https://www.cve.org/CVERecord?id=CVE-2026-7261
https://www.cve.org/CVERecord?id=CVE-2026-7262
https://www.cve.org/CVERecord?id=CVE-2026-7568
https://www.cve.org/CVERecord?id=CVE-2026-7258
https://www.cve.org/CVERecord?id=CVE-2026-42371
(* Security fix *)
x/mesa-26.1.0-aarch64-1.txz: Upgraded.
xap/mozilla-firefox-140.10.2esr-aarch64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.10.2/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2026-41
https://www.cve.org/CVERecord?id=CVE-2026-8090
https://www.cve.org/CVERecord?id=CVE-2026-8094
https://www.cve.org/CVERecord?id=CVE-2026-8092
(* Security fix *)
y/nethack-5.0.0-aarch64-2.txz: Rebuilt.
Fixed some paths / perms.
Thanks to zapwai.
installer/*: Rebuilt.
/usr/lib/setup/armedslack-SeTpartitions: For Hardware Models where the SD card
is not coupled to the OS (i.e. /boot resides on separate block storage), the
SD card's filesystem label is cleared post-installation. This prevents the
label persisting as a source of confusion during future device enumeration.
Raspberry Pi: The RPi bootware filesystem can now reside on block storage
other than MMC (SD card). To activate this, create a FAT32 partition as the
first partition on your block device (USB, SSD, NVMe etc.) and label it
'SLKhwm_bw'. The installer will detect it automatically and configure it
instead of the SD card.
A setup tool is provided to prepare the device from scratch:
/tools/rpi-partition-bootware
This will present a list of available block devices, wipe the partition table,
and create and label the FAT32 bootware partition. Additional partitions (root,
swap etc.) can then be added to the device as usual.
kernels/*: Upgraded.
a/hwdata-0.407-aarch64-1.txz: Upgraded.
a/pam-1.7.2-aarch64-2.txz: Rebuilt.
Harden perms on /sbin/unix_chkpwd.
ap/sqlite-3.53.1-aarch64-1.txz: Upgraded.
l/ffmpeg-7.1.4-aarch64-1.txz: Upgraded.
l/hunspell-1.7.3-aarch64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
n/procmail-3.24-aarch64-4.txz: Rebuilt.
Harden perms on /usr/sbin/procmail.
a/util-linux-2.42-aarch64-2.txz: Rebuilt.
Harden perms on /bin/mount and /bin/umount.
ap/lxc-7.0.0-aarch64-2.txz: Rebuilt.
Harden perms on /usr/libexec/lxc/lxc-user-nic.
d/ccache-4.13.6-aarch64-1.txz: Upgraded.
d/python-pip-26.1.1-aarch64-1.txz: Upgraded.
l/fuse-2.9.9-aarch64-6.txz: Rebuilt.
Harden perms on /bin/fusermount.
l/fuse3-3.16.2-aarch64-2.txz: Rebuilt.
Harden perms on /usr/bin/fusermount3.
l/libgtop-2.41.3-aarch64-2.txz: Rebuilt.
Harden perms on /usr/lib64/libgtop/libgtop_server2.
l/polkit-127-aarch64-2.txz: Rebuilt.
n/httpd-2.4.67-aarch64-1.txz: Upgraded.
This release fixes bugs and the following security issues:
mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data().
mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check.
Off-by-one OOB reads in AJP getter functions.
HTTP response splitting forwarding malicious status line.
mod_authn_socache crash.
mod_auth_digest timing attack.
mod_md unrestricted OCSP response.
buffer overflow in mod_proxy_ajp via ajp_msg_check_header().
mod_rewrite elevation of privileges via ap_expr.
http2: double free and possible RCE on early reset.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.67
https://www.cve.org/CVERecord?id=CVE-2026-34059
https://www.cve.org/CVERecord?id=CVE-2026-34032
https://www.cve.org/CVERecord?id=CVE-2026-33857
https://www.cve.org/CVERecord?id=CVE-2026-33523
https://www.cve.org/CVERecord?id=CVE-2026-33007
https://www.cve.org/CVERecord?id=CVE-2026-33006
https://www.cve.org/CVERecord?id=CVE-2026-29169
https://www.cve.org/CVERecord?id=CVE-2026-29168
https://www.cve.org/CVERecord?id=CVE-2026-28780
https://www.cve.org/CVERecord?id=CVE-2026-24072
https://www.cve.org/CVERecord?id=CVE-2026-23918
(* Security fix *)
n/krb5-1.22.2-aarch64-2.txz: Rebuilt.
Harden perms on /usr/bin/ksu.
x/xorg-server-21.1.22-aarch64-3.txz: Rebuilt.
Harden perms on /usr/libexec/Xorg.wrap.
x/xorg-server-xephyr-21.1.22-aarch64-3.txz: Rebuilt.
x/xorg-server-xnest-21.1.22-aarch64-3.txz: Rebuilt.
x/xorg-server-xvfb-21.1.22-aarch64-3.txz: Rebuilt.
xap/xscreensaver-6.15-aarch64-2.txz: Rebuilt.
Harden perms on /usr/libexec/xscreensaver/sonar and
/usr/libexec/xscreensaver/xscreensaver-auth.
y/nethack-5.0.0-aarch64-1.txz: Upgraded.
Thanks to zapwai.
patches/packages/linux-5.15.205/kernel-generic-5.15.205-x86_64-1.txz: Upgraded.
patches/packages/linux-5.15.205/kernel-headers-5.15.205-x86-1.txz: Upgraded.
patches/packages/linux-5.15.205/kernel-huge-5.15.205-x86_64-1.txz: Upgraded.
patches/packages/linux-5.15.205/kernel-modules-5.15.205-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
xfrm: esp: avoid in-place decrypt on shared skb frags.
This update addresses a Linux kernel local privilege escalation attack known
as "Dirty Frag." Please note that there's a second CVE (CVE-2026-43500) that
is not yet patched upstream.
Mitigation: If for some reason it's not possible to upgrade the kernel right
away you may blacklist or remove the kernel modules esp4.ko and esp6.ko
(CVE-2026-43284) and rxrpc.ko (CVE-2026-43500).
Also remove the modules from the kernel if they have been loaded:
rmmod esp4 esp6 rxrpc
And, drop the file caches in case in-memory program copies have already
been compromised. Make sure possibly affected programs do not have any
open sessions first:
sh -c "echo 3 > /proc/sys/vm/drop_caches"
For more information, see:
https://github.com/V4bel/dirtyfrag
https://www.cve.org/CVERecord?id=CVE-2026-43284
(* Security fix *)
patches/packages/linux-5.15.205/kernel-source-5.15.205-noarch-1.txz: Upgraded.
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure lilo.conf points to the correct
kernel and initrd and run lilo as root to update the bootloader.
If you use elilo to boot your machine, you should run eliloconfig to copy the
kernel and initrd to the EFI System Partition.
patches/packages/mozilla-thunderbird-140.10.2esr-x86_64-1_slack15.0.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/140.10.2esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2026-44/
https://www.cve.org/CVERecord?id=CVE-2026-8090
https://www.cve.org/CVERecord?id=CVE-2026-8094
https://www.cve.org/CVERecord?id=CVE-2026-8092
(* Security fix *)
extra/php82/php82-8.2.31-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
FPM: Fixed XSS within status endpoint.
MBString: Fixed Null pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init().
PDO_Firebird: Fixed SQL injection via NUL bytes in quoted strings.
SOAP: Fixed Stale SOAP_GLOBAL(ref_map) pointer with Apache Map.
SOAP: Fixed Use-after-free after header parsing failure with
SOAP_PERSISTENCE_SESSION.
SOAP: Fixed Broken Apache map value NULL check.
Standard: Fixed Signed integer overflow of char array offset.
Standard: Fixed Consistently pass unsigned char to ctype.h functions.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.2.31
https://www.cve.org/CVERecord?id=CVE-2026-6735
https://www.cve.org/CVERecord?id=CVE-2026-7259
https://www.cve.org/CVERecord?id=CVE-2025-14179
https://www.cve.org/CVERecord?id=CVE-2026-6722
https://www.cve.org/CVERecord?id=CVE-2026-7261
https://www.cve.org/CVERecord?id=CVE-2026-7262
https://www.cve.org/CVERecord?id=CVE-2026-7568
https://www.cve.org/CVERecord?id=CVE-2026-7258
(* Security fix *)
patches/packages/libgpg-error-1.61-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues:
Fix possible stack overflow in es_printf for %.100f format.
Fix out-of-bounds read in vfnameconcat.
(* Security fix *)
patches/packages/mozilla-firefox-140.10.2esr-x86_64-1_slack15.0.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/140.10.2/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2026-41
https://www.cve.org/CVERecord?id=CVE-2026-8090
https://www.cve.org/CVERecord?id=CVE-2026-8094
https://www.cve.org/CVERecord?id=CVE-2026-8092
(* Security fix *)
patches/packages/hunspell-1.7.3-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
extra/php82/php82-8.2.31-arm-1.txz: Upgraded.
This update fixes security issues:
FPM: Fixed XSS within status endpoint.
MBString: Fixed Null pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init().
PDO_Firebird: Fixed SQL injection via NUL bytes in quoted strings.
SOAP: Fixed Stale SOAP_GLOBAL(ref_map) pointer with Apache Map.
SOAP: Fixed Use-after-free after header parsing failure with
SOAP_PERSISTENCE_SESSION.
SOAP: Fixed Broken Apache map value NULL check.
Standard: Fixed Signed integer overflow of char array offset.
Standard: Fixed Consistently pass unsigned char to ctype.h functions.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.2.31
https://www.cve.org/CVERecord?id=CVE-2026-6735
https://www.cve.org/CVERecord?id=CVE-2026-7259
https://www.cve.org/CVERecord?id=CVE-2025-14179
https://www.cve.org/CVERecord?id=CVE-2026-6722
https://www.cve.org/CVERecord?id=CVE-2026-7261
https://www.cve.org/CVERecord?id=CVE-2026-7262
https://www.cve.org/CVERecord?id=CVE-2026-7568
https://www.cve.org/CVERecord?id=CVE-2026-7258
(* Security fix *)
patches/packages/libgpg-error-1.61-arm-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues:
Fix possible stack overflow in es_printf for %.100f format.
Fix out-of-bounds read in vfnameconcat.
(* Security fix *)
patches/packages/hunspell-1.7.3-arm-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://github.com/hunspell/hunspell/releases/tag/v1.7.3
(* Security fix *)
patches/packages/httpd-2.4.67-arm-1_slack15.0.txz: Upgraded.
This release fixes bugs and the following security issues:
mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data().
mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check.
Off-by-one OOB reads in AJP getter functions.
HTTP response splitting forwarding malicious status line.
mod_authn_socache crash.
mod_auth_digest timing attack.
mod_md unrestricted OCSP response.
buffer overflow in mod_proxy_ajp via ajp_msg_check_header().
mod_rewrite elevation of privileges via ap_expr.
http2: double free and possible RCE on early reset.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.67
https://www.cve.org/CVERecord?id=CVE-2026-34059
https://www.cve.org/CVERecord?id=CVE-2026-34032
https://www.cve.org/CVERecord?id=CVE-2026-33857
https://www.cve.org/CVERecord?id=CVE-2026-33523
https://www.cve.org/CVERecord?id=CVE-2026-33007
https://www.cve.org/CVERecord?id=CVE-2026-33006
https://www.cve.org/CVERecord?id=CVE-2026-29169
https://www.cve.org/CVERecord?id=CVE-2026-29168
https://www.cve.org/CVERecord?id=CVE-2026-28780
https://www.cve.org/CVERecord?id=CVE-2026-24072
https://www.cve.org/CVERecord?id=CVE-2026-23918
(* Security fix *)
24/02/2022: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware
15/12/2015: Aggiornato HowTo automatizzare la compilazione del kernel
15/12/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
24/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
22/11/2015: Aggiornato HowTo Automatizzare l'aggiornamento di Slackware current
07/11/2015: Aggiornato HowTo automatizzare la compilazione del kernel
05/11/2015: Nuovo HowTo Automatizzare l'aggiornamento di Slackware current
30/10/2015: Aggiornato HowTo Automatizzare la prima configurazione di Slackware
26/05/2015: Aggiornato HowTo mini Slackware su pendrive
07/05/2015: Aggiornato HowTo automatizzare la compilazione del kernel
13/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
02/04/2015: Aggiornato HowTo automatizzare la compilazione del kernel
Questo script provvede ad aggiornare Slackware o Slackware64 all'ultima current in maniera del tutto autonoma, dalla ricerca di aggiornamenti all'aggiornamento del bootloader.
Scarica la lista dei pacchetti e la confronta con quelli installati, dopodiché controlla se i nuovi pacchetti sono presenti in un eventuale DVD già montato altrimenti li scarica da internet.
Lo script può gestire anche un sistema multilib, infatti se...
Uno script da eseguire al primo avvio di Slackware.
Mi capita spesso di fare nuove installazioni di Slackware e di ripetere sempre le stesse operazioni atte ad una prima configurazione di base, come ad esempio l'italianizzazione o l'impostazione della corretta risoluzione framebuffer.
Per cui ho deciso di raggruppare tutte queste operazioni di base, che possono...
Ecco che la bash ci viene in aiuto anche per realizzare un semplice sistema di video sorveglianza molto economico.
Questo script scatta una foto dalla webcam impostata nella variabile DEV con mplayer, ne fa una copia con la data corrente come nome del file per conservare una copia di tutte le foto scattate e per sapere a prima vista a quando risalgono. Dopodiché carica entrambe le copie della foto sul server ftp...
Spesso i produttori di hardware ottengono costi di produzione più bassi utilizzando componenti con capacità superiori in dispositivi non progettati per sfruttarle piuttosto che utilizzando componenti su misura, questo è anche il caso del mio mouse Logitech RX1000.
Aprendo il mouse e guardando le piste stampate sul retro della scheda si nota che il controller ha un pin inutilizzato, quindi leggendo il codice (CY7C63813) sul chip e trovandone il...
Compilare il kernel Linux non è certamente cosa difficile, ma chi è alle prime armi spesso è spaventato da questa procedura e anche per chi è pratico a volte diventa scocciante aggiornare ad ogni release.
Dunque ho scritto questo script bash che automatizza la procedura: rileva quanti core ha il proprio processore per decidere in quanti processi paralleli eseguire la compilazione in modo da ottimizzarne i tempi, poi controlla se la versione scelta...
Condividi sui tuoi social preferiti!
Telegram Facebook Linkedin Twitter Pinterest