Re: [blfs-book] [BLFS Trac] #11675: thunderbird-60.5.1 (CVE-2018-18356 CVE-2019-5785 CVE-2018-18335 CVE-2018-18509) (was: thunderbird-60.5.1)

2019-02-14 Thread BLFS Trac via blfs-book 
#11675: thunderbird-60.5.1 (CVE-2018-18356 CVE-2019-5785 CVE-2018-18335
CVE-2018-18509)
-+
 Reporter:  bdubbs   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  high |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+
Changes (by renodr):

 * priority:  normal => high


Comment:

 {{{

 Thunderbird Release Notes
 Version 60.5.1, first offered to channel users on February 14, 2019

 Check out "What’s New" and "Known Issues" for this version of Thunderbird
 below. As always, you’re encouraged to tell us what you think, or file a
 bug in Bugzilla. If interested, please see the complete list of changes in
 this release.

 If you have installed Lightning, Thunderbird's Calendar add-on, it will
 automatically be updated to match the new version of Thunderbird. Refer to
 this Calendar troubleshooting article in case of problems.

 System Requirements: • Window: Windows 7, Windows Server 2008 R2 or later
 • Mac: Mac OS X 10.9 or later • Linux: GTK+ 3.4 or higher. Details here.

 Please refer to Release Notes for version 60.0 to see the list of
 improvements and fixed issues.

 What’s New

 fixed

 CalDav access to some servers not working
 fixed

 Various security fixes

 Known Issues

 unresolved

 Due to changes in the Mozilla platform profiles stored on Windows
 network shares addressed via drive letters are now addressed via UNC
 unresolved

 Chat: Twitter not working due to API changes at Twitter.com


 }}}

 {{{

 Mozilla Foundation Security Advisory 2019-06
 Security vulnerabilities fixed in Thunderbird 60.5.1

 Announced
 February 14, 2019
 Impact
 high
 Products
 Thunderbird
 Fixed in

 Thunderbird 60.5.1

 In general, these flaws cannot be exploited through email in the
 Thunderbird product because scripting is disabled when reading mail, but
 are potentially risks in browser or browser-like contexts.
 #CVE-2018-18356: Use-after-free in Skia

 Reporter
 Tran Tien Hung of Viettel Cyber Security
 Impact
 high

 Description

 A use-after-free vulnerability in the Skia library can occur when creating
 a path, leading to a potentially exploitable crash.
 References

 Bug 1525817

 #CVE-2019-5785: Integer overflow in Skia

 Reporter
 Ivan Fratric of Google Project Zero
 Impact
 high

 Description

 An integer overflow vulnerability in the Skia library can occur after
 specific transform operations, leading to a potentially exploitable crash.
 References

 Bug 1525433
 The Curious Case of Convexity Confusion

 #CVE-2018-18335: Buffer overflow in Skia with accelerated Canvas 2D

 Reporter
 Anonymous
 Impact
 high

 Description

 A buffer overflow vulnerability in the Skia library can occur with Canvas
 2D acceleration on macOS. This issue was addressed by disabling Canvas 2D
 acceleration in Firefox ESR.
 Note: this does not affect other versions and platforms where Canvas 2D
 acceleration is already disabled by default.
 References

 Bug 1525815

 #CVE-2018-18509: S/MIME signature spoofing

 Reporter
 Damian Poddebniak
 Impact
 high

 Description

 A flaw during verification of certain S/MIME signatures causes emails to
 be shown in Thunderbird as having a valid digital signature, even if the
 shown message contents aren't covered by the signature. The flaw allows an
 attacker to reuse a valid S/MIME signature to craft an email message with
 arbitrary content.
 References

 Bug 1507218


 }}}

 Security fixes: CVE-2018-18356, CVE-2019-5785, CVE-2018-18335,
 CVE-2018-18509

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11673: postgresql-11.2

2019-02-14 Thread BLFS Trac via blfs-book 
#11673: postgresql-11.2
-+
 Reporter:  bdubbs   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

Comment (by renodr):

 {{{

 E.1. Release 11.2

 E.1.1. Migration to Version 11.2
 E.1.2. Changes

 Release date: 2019-02-14

 This release contains a variety of fixes from 11.1. For information about
 new features in major release 11, see Section E.3.
 E.1.1. Migration to Version 11.2

 A dump/restore is not required for those running 11.X.
 E.1.2. Changes

 By default, panic instead of retrying after fsync() failure, to avoid
 possible data corruption (Craig Ringer, Thomas Munro)

 Some popular operating systems discard kernel data buffers when unable
 to write them out, reporting this as fsync() failure. If we reissue the
 fsync() request it will succeed, but in fact the data has been lost, so
 continuing risks database corruption. By raising a panic condition
 instead, we can replay from WAL, which may contain the only remaining copy
 of the data in such a situation. While this is surely ugly and
 inefficient, there are few alternatives, and fortunately the case happens
 very rarely.

 A new server parameter data_sync_retry has been added to control this;
 if you are certain that your kernel does not discard dirty data buffers in
 such scenarios, you can set data_sync_retry to on to restore the old
 behavior.

 Include each major release branch's release notes in the documentation
 for only that branch, rather than that branch and all later ones (Tom
 Lane)

 The duplication induced by the previous policy was getting out of
 hand. Our plan is to provide a full archive of release notes on the
 project's web site, but not duplicate it within each release.

 Fix handling of unique indexes with INCLUDE columns on partitioned
 tables (Álvaro Herrera)

 The uniqueness condition was not checked properly in such cases.

 Ensure that NOT NULL constraints of a partitioned table are honored
 within its partitions (Álvaro Herrera, Amit Langote)

 Update catalog state correctly for partition table constraints when
 detaching their partition (Amit Langote, Álvaro Herrera)

 Previously, the pg_constraint.conislocal field for such a constraint
 might improperly be left as false, rendering it undroppable. A
 dump/restore or pg_upgrade would cure the problem, but if necessary, the
 catalog field can be adjusted manually.

 Create or delete foreign key enforcement triggers correctly when
 attaching or detaching a partition in a partitioned table that has a
 foreign-key constraint (Amit Langote, Álvaro Herrera)

 Avoid useless creation of duplicate foreign key constraints in
 partitioned tables (Álvaro Herrera)

 When an index is created on a partitioned table using ONLY, and there
 are no partitions yet, mark it valid immediately (Álvaro Herrera)

 Otherwise there is no way to make it become valid.

 Use a safe table lock level when detaching a partition (Álvaro
 Herrera)

 The previous locking level was too weak and might allow concurrent DDL
 on the table, with bad results.

 Fix problems with applying ON COMMIT DROP and ON COMMIT DELETE ROWS to
 partitioned tables and tables with inheritance children (Michael Paquier)

 Disallow COPY FREEZE on partitioned tables (David Rowley)

 This should eventually be made to work, but it may require a patch
 that's too complicated to risk back-patching.

 Fix possible index corruption when the indexed column has a “fast
 default” (that is, it was added by ALTER TABLE ADD COLUMN with a constant
 non-NULL default value specified, after the table already contained some
 rows) (Andres Freund)

 Correctly adjust “fast default” values during ALTER TABLE ... ALTER
 COLUMN TYPE (Andrew Dunstan)

 Avoid possible deadlock when acquiring multiple buffer locks (Nishant
 Fnu)

 Avoid deadlock between GIN vacuuming and concurrent index insertions
 (Alexander Korotkov, Andrey Borodin, Peter Geoghegan)

 This change partially reverts a performance improvement, introduced in
 version 10.0, that attempted to reduce the number of index pages locked
 during deletion of a GIN posting tree page. That's now been found to lead
 to deadlocks, so we've removed it pending closer analysis.

 Avoid deadlock between hot-standby queries and replay of GIN index
 page deletion (Alexander Korotkov)

 Fix possible crashes in logical replication when index expressions or
 predicates are in use (Peter Eisentraut)

 Avoid useless and expensive logical decoding of TOAST data during a
 table rewrite (Tomas Vondra)

 Fix logic for stopping a subset of WAL senders when synchronous
 replication is enabled (Paul Guo, Michael Paquier)

 A

Re: [blfs-book] [BLFS Trac] #11672: libjpeg-turbo-2.0.2 (CVE-2018-19664 CVE-2018-20330)

2019-02-14 Thread BLFS Trac via blfs-book 
#11672: libjpeg-turbo-2.0.2 (CVE-2018-19664 CVE-2018-20330)
-+
 Reporter:  bdubbs   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  high |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+
Changes (by renodr):

 * priority:  normal => high


Comment:

 Actually bump to the proper priority.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11672: libjpeg-turbo-2.0.2 (CVE-2018-19664 CVE-2018-20330) (was: libjpeg-turbo-2.0.2)

2019-02-14 Thread BLFS Trac via blfs-book 
#11672: libjpeg-turbo-2.0.2 (CVE-2018-19664 CVE-2018-20330)
-+
 Reporter:  bdubbs   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

Comment (by renodr):

 {{{
 2.0.2
 Significant changes relative to 2.0.1:

 Fixed a regression introduced by 2.0.1[5] that prevented a runtime
 search path (rpath) from being embedded in the libjpeg-turbo shared
 libraries and executables for macOS and iOS. This caused a fatal error of
 the form "dyld: Library not loaded" when attempting to use one of the
 executables, unless DYLD_LIBRARY_PATH was explicitly set to the location
 of the libjpeg-turbo shared libraries.

 Fixed an integer overflow and subsequent segfault (CVE-2018-20330)
 that occurred when attempting to load a BMP file with more than 1 billion
 pixels using the tjLoadImage() function.

 Fixed a buffer overrun (CVE-2018-19664) that occurred when attempting
 to decompress a specially-crafted malformed JPEG image to a 256-color BMP
 using djpeg.

 Fixed a floating point exception that occurred when attempting to
 decompress a specially-crafted malformed JPEG image with a specified image
 width or height of 0 using the C version of TJBench.

 The TurboJPEG API will now decompress 4:4:4 JPEG images with 2x1, 1x2,
 3x1, or 1x3 luminance and chrominance sampling factors. This is a non-
 standard way of specifying 1x subsampling (normally 4:4:4 JPEGs have 1x1
 luminance and chrominance sampling factors), but the JPEG format and the
 libjpeg API both allow it.

 Fixed a regression introduced by 2.0 beta1[7] that caused djpeg to
 generate incorrect PPM images when used with the -colors option.

 Fixed an issue whereby a static build of libjpeg-turbo (a build in
 which ENABLE_SHARED is 0) could not be installed using the Visual Studio
 IDE.

 Fixed a severe performance issue in the Loongson MMI SIMD extensions
 that occurred when compressing RGB images whose image rows were not 64
 -bit-aligned.

 }}}

 Security fixes: CVE-2018-20330 CVE-2018-19664

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #11673: postgresql-11.2

2019-02-14 Thread BLFS Trac via blfs-book 
#11673: postgresql-11.2
-+---
 Reporter:  bdubbs   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.5
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New minor version.  Not too late for 8.4.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #11674: xcursor-themes-1.0.6

2019-02-14 Thread BLFS Trac via blfs-book 
#11674: xcursor-themes-1.0.6
-+---
 Reporter:  bdubbs   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.4
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version.  Can go into 8.4

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11671: Address mention of NINJAJOBS in qtwebengine. (was: Address any mention of NINJAJOBS.)

2019-02-14 Thread BLFS Trac via blfs-book 
#11671: Address mention of NINJAJOBS in qtwebengine.
-+
 Reporter:  ken@…|   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11673: postgresql-11.2

2019-02-14 Thread BLFS Trac via blfs-book 
#11673: postgresql-11.2
-+
 Reporter:  bdubbs   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+
Changes (by bdubbs):

 * milestone:  8.5 => 8.4


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #11672: libjpeg-turbo-2.0.2

2019-02-14 Thread BLFS Trac via blfs-book 
#11672: libjpeg-turbo-2.0.2
-+---
 Reporter:  bdubbs   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.4
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version.  Not too late for 8.4.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #11675: thunderbird-60.5.1

2019-02-14 Thread BLFS Trac via blfs-book 
#11675: thunderbird-60.5.1
-+---
 Reporter:  bdubbs   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.4
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New point version.  OK for 8.4.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] BLFS Package Currency Check - 2019-02-15 05:45:01 GMT

2019-02-14 Thread bdubbs--- via blfs-book 
BLFS PackageBLFS Version  Latest  Ticket
chapter 04: cracklib2.9.60
chapter 04: cracklib-words  2.9.60
chapter 05: mdadm   4.0  4.1  #11286
chapter 09: js3852.2.1gnome1 manual   
chapter 09: js5260.1.0   manual   
chapter 10: libjpeg-turbo   2.0.12.0.2
chapter 12: systemd 240  241  #11670
chapter 13: jdk 11.0.2+9 11.0.2   
chapter 17: alpine  2.21 2.21.999 #10188
chapter 20: db  5.3.28   manual   
chapter 20: postgresql  11.1 11.2 
chapter 24: xcursor-themes  1.0.51.0.6
chapter 25: atk 2.30.0   2.31.90  #11639
chapter 37: thunar-volman   0.8.10.9.1#10163
chapter 43: libreoffice 6.1.4.2  6.2.0.3  #11650
chapter 43: thunderbird 60.5.0   60.5.1   
chapter 50: docbook-xsl-nons1.79.2   manual   

-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11671: Address any mention of NINJAJOBS.

2019-02-14 Thread BLFS Trac via blfs-book 
#11671: Address any mention of NINJAJOBS.
-+
 Reporter:  ken@…|   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+
Changes (by ken@…):

 * owner:  ken@… => blfs-book
 * status:  assigned => new


Comment:

 The only affected package is qtwebengine, where NINJAJOBS needed to be
 specified when invoking make.  Needs to be tested on an up-to-date system,
 ideally one with more cores.  Giving back to the book because not sure
 when I'll get that far.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11671: Address any mention of NINJAJOBS.

2019-02-14 Thread BLFS Trac via blfs-book 
#11671: Address any mention of NINJAJOBS.
-+---
 Reporter:  ken@…|   Owner:  ken@…
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by ken@…):

 * owner:  blfs-book => ken@…
 * status:  new => assigned


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #11671: Address any mention of NINJAJOBS.

2019-02-14 Thread BLFS Trac via blfs-book 
#11671: Address any mention of NINJAJOBS.
-+---
 Reporter:  ken@…|  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.4
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 We used to optionally patch ninja to limit the number of jobs, and I'm
 sure there is at least one reference to that in BLFS. With ninja-1.9.0 the
 system version will now accept -j N.

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11669: cbindgen-0.8.0

2019-02-14 Thread BLFS Trac via blfs-book 
#11669: cbindgen-0.8.0
-+-
 Reporter:  bdubbs   |   Owner:  renodr
 Type:  enhancement  |  Status:  closed
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:  fixed
 Keywords:   |
-+-
Changes (by renodr):

 * status:  assigned => closed
 * resolution:   => fixed


Comment:

 Fixed at r21150

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] r21150 - in trunk/BOOK: . general/prog introduction/welcome

2019-02-14 Thread renodr--- via blfs-book 
Author: renodr
Date: Thu Feb 14 09:57:45 2019
New Revision: 21150

Log:
Update to cbindgen-0.8.0

Modified:
   trunk/BOOK/general.ent
   trunk/BOOK/general/prog/cbindgen.xml
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/packages.ent

Modified: trunk/BOOK/general.ent
==
--- trunk/BOOK/general.ent  Wed Feb 13 17:39:40 2019(r21149)
+++ trunk/BOOK/general.ent  Thu Feb 14 09:57:45 2019(r21150)
@@ -1,12 +1,12 @@
 
 
-   
+   

 
 
 
 
-
+
  
   
   

Modified: trunk/BOOK/general/prog/cbindgen.xml
==
--- trunk/BOOK/general/prog/cbindgen.xmlWed Feb 13 17:39:40 2019
(r21149)
+++ trunk/BOOK/general/prog/cbindgen.xmlThu Feb 14 09:57:45 2019
(r21150)
@@ -6,10 +6,10 @@
 
   https://github.com/eqrion/cbindgen/archive/v&cbindgen-version;/cbindgen-&cbindgen-version;.tar.gz";>
   
-  
-  
+  
+  
   
-  
+  
 ]>
 
 

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==
--- trunk/BOOK/introduction/welcome/changelog.xml   Wed Feb 13 17:39:40 
2019(r21149)
+++ trunk/BOOK/introduction/welcome/changelog.xml   Thu Feb 14 09:57:45 
2019(r21150)
@@ -43,6 +43,16 @@
 -->
 
 
+  February 14th, 2019
+  
+
+  [renodr] - Update to cbindgen-0.8.0. Fixes
+  #11669.
+
+  
+
+
+
   February 13th, 2019
   
 

Modified: trunk/BOOK/packages.ent
==
--- trunk/BOOK/packages.ent Wed Feb 13 17:39:40 2019(r21149)
+++ trunk/BOOK/packages.ent Thu Feb 14 09:57:45 2019(r21150)
@@ -308,7 +308,7 @@
 
 
 
-
+
 
 
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11669: cbindgen-0.8.0

2019-02-14 Thread BLFS Trac via blfs-book 
#11669: cbindgen-0.8.0
-+---
 Reporter:  bdubbs   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---

Comment (by renodr):

 {{{
 * support for 'includes' without default includes
 * removed dependency on ancient serde_derive!
 }}}

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11669: cbindgen-0.8.0

2019-02-14 Thread BLFS Trac via blfs-book 
#11669: cbindgen-0.8.0
-+---
 Reporter:  bdubbs   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by renodr):

 * owner:  blfs-book => renodr
 * status:  new => assigned


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11669: cbindgen-0.8.0

2019-02-14 Thread BLFS Trac via blfs-book 
#11669: cbindgen-0.8.0
-+
 Reporter:  bdubbs   |   Owner:  blfs-book
 Type:  enhancement  |  Status:  new
 Priority:  normal   |   Milestone:  8.4
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+

Comment (by renodr):

 Hey Ken, do you want to do this?

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #11670: systemd-241 (Hold until 8.5)

2019-02-14 Thread BLFS Trac via blfs-book 
#11670: systemd-241 (Hold until 8.5)
-+---
 Reporter:  renodr   |   Owner:  renodr
 Type:  enhancement  |  Status:  assigned
 Priority:  normal   |   Milestone:  8.5
Component:  BOOK | Version:  SVN
 Severity:  normal   |  Resolution:
 Keywords:   |
-+---
Changes (by renodr):

 * owner:  blfs-book => renodr
 * status:  new => assigned


--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[blfs-book] [BLFS Trac] #11670: systemd-241 (Hold until 8.5)

2019-02-14 Thread BLFS Trac via blfs-book 
#11670: systemd-241 (Hold until 8.5)
-+---
 Reporter:  renodr   |  Owner:  blfs-book
 Type:  enhancement  | Status:  new
 Priority:  normal   |  Milestone:  8.5
Component:  BOOK |Version:  SVN
 Severity:  normal   |   Keywords:
-+---
 New version

 As a result of backwards-incompatible changes, a hard reqirement on kernel
 4.19.x or later, and the fact that we are so close to freeze, I'm holding
 on this until directly after 8.4 releases.

 {{{


 🎆 A new, official systemd release has just 🎉 been 🎊 tagged 🍾. Please
 download the tarball here:

 https://github.com/systemd/systemd/archive/v241.tar.gz

 Changes since the previous release:

 * The default locale can now be configured at compile time.
 Otherwise,
   a suitable default will be selected automatically (one of
 C.UTF-8,
   en_US.UTF-8, and C).

 * The version string shown by systemd and other tools now includes
 the
   git commit hash when built from git. An override may be
 specified
   during compilation, which is intended to be used by
 distributions to
   include the package release information.

 * systemd-cat can now filter standard input and standard error
 streams
   for different syslog priorities using the new --stderr-priority=
   option.

 * systemd-journald and systemd-journal-remote reject entries which
   contain too many fields (CVE-2018-16865) and set limits on the
   process' command line length (CVE-2018-16864).

 * $DBUS_SESSION_BUS_ADDRESS environment variable is set by
 pam_systemd
   again.

 * A new network device NamePolicy "keep" is implemented for link
 files,
   and used by default in 99-default.link (the fallback
 configuration
   provided by systemd). With this policy, if the network device
 name
   was already set by userspace, the device will not be renamed
 again.
   This matches the naming scheme that was implemented before
   systemd-240. If naming-scheme < 240 is specified, the "keep"
 policy
   is also enabled by default, even if not specified. Effectively,
 this
   means that if naming-scheme >= 240 is specified, network devices
 will
   be renamed according to the configuration, even if they have
 been
   renamed already, if "keep" is not specified as the naming policy
 in
   the .link file. The 99-default.link file provided by systemd
 includes
   "keep" for backwards compatibility, but it is recommended for
 user
   installed .link files to *not* include it.

   The "kernel" policy, which keeps kernel names declared to be
   "persistent", now works again as documented.

 * kernel-install script now optionally takes the paths to one or
 more
   initrd files, and passes them to all plugins.

 * The mincore() system call has been dropped from the @system-
 service
   system call filter group, as it is pretty exotic and may
 potentially
   used for side-channel attacks.

 * -fPIE is dropped from compiler and linker options. Please
 specify
   -Db_pie=true option to meson to build position-independent
   executables. Note that the meson option is supported since
 meson-0.49.

 * The fs.protected_regular and fs.protected_fifos sysctls, which
 were
   added in Linux 4.19 to make some data spoofing attacks harder,
 are
   now enabled by default. While this will hopefully improve the
   security of most installations, it is technically a backwards
   incompatible change; to disable these sysctls again, place the
   following lines in /etc/sysctl.d/60-protected.conf or a similar
 file:

   fs.protected_regular = 0
   fs.protected_fifos = 0

   Note that the similar hardlink and symlink protection has been
   enabled since v199, and may be disabled likewise.

 * The files read from the EnvironmentFile= setting in unit files
 now
   parse backslashes inside quotes literally, matching the
 behaviour of
   POSIX shells.

 * udevadm trigger, udevadm control, udevadm settle and udevadm
 monitor
   now automatically become NOPs when run in a chroot()
 environment.

 * The tmpfiles.d/ "C" line type will now copy directory trees not
 only
   when the destination is so far missing, but also if it already
 exists
   as a directory and is empty. This is useful to cater for systems
   where directory trees are put together from multiple separate
 mount
   points but otherwise empty.

 * A new function sd_bus_close_unref() (and the associated
   sd_bus_close_unrefp()) has been added to libsystemd, that
 combines

[blfs-book] Files in BLFS svn missing on osuosl

2019-02-14 Thread bdubbs--- via blfs-book 
Missing firefox-65.0.1.source.tar.xz
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page