Fri Feb 28 03:53:37 UTC 2020
ap/hplip-3.20.2-x86_64-1.txz:  Upgraded.
d/meson-0.53.2-x86_64-1.txz:  Upgraded.
d/python3-3.8.2-x86_64-1.txz:  Upgraded.
d/rust-1.41.1-x86_64-1.txz:  Upgraded.
l/libnotify-0.7.9-x86_64-1.txz:  Upgraded.
l/libsoup-2.68.4-x86_64-1.txz:  Upgraded.
n/libqmi-1.24.6-x86_64-1.txz:  Upgraded.
+--------------------------+

Mon Mar  2 19:05:10 UTC 2020
a/dialog-1.3_20200228-x86_64-1.txz:  Upgraded.
l/Mako-1.1.2-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.9_27-x86_64-1.txz:  Upgraded.
l/libcap-2.33-x86_64-1.txz:  Upgraded.
n/bind-9.16.0-x86_64-2.txz:  Rebuilt.
  rc.bind: ensure /var/run/named exists before starting named. Thanks to MarcT.
  rc.bind: when stopping named, only kill processes in the current namespace.
x/libevdev-1.9.0-x86_64-1.txz:  Upgraded.
x/wayland-protocols-1.20-noarch-1.txz:  Upgraded.
xap/seamonkey-2.53.1-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.seamonkey-project.org/releases/seamonkey2.53.1
  (* Security fix *)
testing/packages/PAM/libcap-2.33-x86_64-1_pam.txz:  Upgraded.
+--------------------------+
Sat Feb 29 19:20:21 UTC 2020
a/kernel-generic-5.4.23-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.23-x86_64-1.txz:  Upgraded.
  DM_BUFIO y -> m
  DM_SNAPSHOT y -> m
a/kernel-modules-5.4.23-x86_64-1.txz:  Upgraded.
a/logrotate-3.16.0-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.27.2-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.23-x86-1.txz:  Upgraded.
k/kernel-source-5.4.23-noarch-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/PAM/hplip-3.20.2-x86_64-1_pam.txz:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Wed Mar  4 01:39:54 UTC 2020
xap/seamonkey-2.53.1-x86_64-2.txz:  Rebuilt.
  Fixed $LIBDIRSUFFIX for 32-bit. Thanks to ljb643.
+--------------------------+
Tue Mar  3 22:39:20 UTC 2020
a/hwdata-0.333-noarch-1.txz:  Upgraded.
a/kernel-firmware-20200302_0148cfe-noarch-1.txz:  Upgraded.
ap/ddrescue-1.25-x86_64-1.txz:  Upgraded.
d/perl-5.30.1-x86_64-2.txz:  Rebuilt.
  Added Parse-Yapp-1.21, needed to build the parser for the Samba compile.
d/vala-0.48.0-x86_64-1.txz:  Upgraded.
l/at-spi2-atk-2.34.2-x86_64-1.txz:  Upgraded.
l/fribidi-1.0.9-x86_64-1.txz:  Upgraded.
l/sg3_utils-1.45-x86_64-1.txz:  Upgraded.
n/samba-4.12.0-x86_64-1.txz:  Upgraded.
testing/packages/PAM/samba-4.12.0-x86_64-1_pam.txz:  Upgraded.
+--------------------------+

Wed Mar  4 22:03:30 UTC 2020
a/sdparm-1.10-x86_64-3.txz:  Rebuilt.
  Recompiled against sg3_utils-1.45.
a/udisks-1.0.5-x86_64-5.txz:  Rebuilt.
  Recompiled against sg3_utils-1.45.
d/cmake-3.16.5-x86_64-1.txz:  Upgraded.
l/libgpod-0.8.3-x86_64-6.txz:  Rebuilt.
  Recompiled against sg3_utils-1.45.
n/curl-7.69.0-x86_64-1.txz:  Upgraded.
n/cyrus-sasl-2.1.27-x86_64-3.txz:  Rebuilt.
  Added SQL support via MariaDB. Thanks to niksoggia.
n/ntp-4.2.8p14-x86_64-1.txz:  Upgraded.
n/ppp-2.4.8-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  By sending an unsolicited EAP packet to a vulnerable ppp client or server,
  an unauthenticated remote attacker could cause memory corruption in the
  pppd process, which may allow for arbitrary code execution.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
  (* Security fix *)
testing/packages/PAM/cyrus-sasl-2.1.27-x86_64-3_pam.txz:  Rebuilt.
  Added SQL support via MariaDB. Thanks to niksoggia.
testing/packages/PAM/ppp-2.4.8-x86_64-1_pam.txz:  Upgraded.
  This update fixes a security issue:
  By sending an unsolicited EAP packet to a vulnerable ppp client or server,
  an unauthenticated remote attacker could cause memory corruption in the
  pppd process, which may allow for arbitrary code execution.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
  (* Security fix *)
+--------------------------+

Fri Mar  6 02:45:42 UTC 2020
a/coreutils-8.32-x86_64-1.txz:  Upgraded.
a/kernel-generic-5.4.24-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.24-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.24-x86_64-1.txz:  Upgraded.
a/kmod-27-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.24-x86-1.txz:  Upgraded.
d/mercurial-5.3.1-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.24-noarch-1.txz:  Upgraded.
  -HEADER_TEST n
l/python-packaging-20.3-x86_64-1.txz:  Upgraded.
l/vte-0.60.0-x86_64-1.txz:  Upgraded.
x/mesa-20.0.1-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Fri Mar  6 22:10:25 UTC 2020
a/cryptsetup-2.3.0-x86_64-2.txz:  Rebuilt.
  Include some additional documentation. Thanks to regdub.
a/sdparm-1.11-x86_64-1.txz:  Upgraded.
ap/moc-2.5.2-x86_64-6.txz:  Rebuilt.
  Fixed docs permissions. Thanks to regdub.
l/glib-networking-2.64.0-x86_64-1.txz:  Upgraded.
l/glib2-2.64.0-x86_64-1.txz:  Upgraded.
l/gvfs-1.44.0-x86_64-1.txz:  Upgraded.
l/libnl-1.1.4-x86_64-3.txz:  Rebuilt.
  Fixed docs permissions. Thanks to regdub.
l/tdb-1.4.3-x86_64-3.txz:  Rebuilt.
  Fixed docs permissions. Thanks to regdub.
l/tevent-0.10.2-x86_64-3.txz:  Rebuilt.
  Fixed docs permissions. Thanks to regdub.
n/bind-9.16.0-x86_64-3.txz:  Rebuilt.
  Applied upstream patch to fix a discrepancy in the quota code that can
  result in a situation where the count is not properly decremented in
  some cases.
n/dovecot-2.3.10-x86_64-1.txz:  Upgraded.
n/rp-pppoe-3.13-x86_64-2.txz:  Rebuilt.
  This needed a rebuild for ppp-2.4.8. Thanks to regdub.
x/libinput-1.15.3-x86_64-1.txz:  Upgraded.
testing/packages/PAM/dovecot-2.3.10-x86_64-1_pam.txz:  Upgraded.
+--------------------------+

Sat Mar  7 20:25:36 UTC 2020
l/gobject-introspection-1.64.0-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_0-x86_64-1.txz:  Upgraded.
l/libical-3.0.8-x86_64-1.txz:  Upgraded.
l/librsvg-2.48.0-x86_64-1.txz:  Upgraded.
l/libsoup-2.70.0-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.51-x86_64-1.txz:  Upgraded.
xap/libnma-1.8.28-x86_64-1.txz:  Added.
  This is the NetworkManager GUI client library, which was previously
  provided by network-manager-applet. It's now a standalone project, and
  is required by network-manager-applet and other NetworkManager frontends.
xap/network-manager-applet-1.16.0-x86_64-1.txz:  Upgraded.
  This requires the new libnma package.
+--------------------------+

Sun Mar  8 19:42:26 UTC 2020
d/bison-3.5.3-x86_64-1.txz:  Upgraded.
d/python-setuptools-45.3.0-x86_64-1.txz:  Upgraded.
l/adwaita-icon-theme-3.36.0-noarch-1.txz:  Upgraded.
l/at-spi2-core-2.36.0-x86_64-1.txz:  Upgraded.
l/pygobject3-3.36.0-x86_64-1.txz:  Upgraded.
l/python-pygments-2.6.1-x86_64-1.txz:  Upgraded.
+--------------------------+

Tue Mar 10 19:53:39 UTC 2020
d/guile-3.0.1-x86_64-1.txz:  Upgraded.
l/SDL2-2.0.10-x86_64-2.txz:  Rebuilt.
  Rebuilt to pick up wayland support. Thanks to franzen.
l/dconf-0.36.0-x86_64-1.txz:  Upgraded.
l/dconf-editor-3.36.0-x86_64-1.txz:  Upgraded.
l/gsettings-desktop-schemas-3.36.0-x86_64-1.txz:  Upgraded.
l/python-pygments-2.5.2-x86_64-1.txz:  Upgraded.
  It seems like the pragmatic thing to do here is to revert this one to fix
  the python2 programs and modules that depend on it. We'll have to do a bit
  more research to determine what the best course of action is regarding
  python2 in general, though. Certainly we shouldn't be requiring python2
  for anything important moving forward, but even that will take some work.
  Plasma 5 as currently built has multiple dependencies on python2, for
  example.
n/bind-9.16.0-x86_64-4.txz:  Rebuilt.
  Drop python2 support and switch to python3.
x/liberation-fonts-ttf-2.1.0-noarch-1.txz:  Upgraded.
xap/mozilla-firefox-68.6.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/68.6.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2020-09/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6805
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6806
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6807
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6811
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20503
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6812
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6814
  (* Security fix *)
+--------------------------+

Wed Mar 11 19:54:51 UTC 2020
ap/hplip-3.20.3-x86_64-1.txz:  Upgraded.
d/vala-0.48.1-x86_64-1.txz:  Upgraded.
l/SDL2-2.0.12-x86_64-1.txz:  Upgraded.
l/gcr-3.36.0-x86_64-1.txz:  Upgraded.
l/glib2-2.64.1-x86_64-1.txz:  Upgraded.
l/gnome-keyring-3.36.0-x86_64-1.txz:  Upgraded.
l/libsecret-0.20.2-x86_64-1.txz:  Upgraded.
n/curl-7.69.1-x86_64-1.txz:  Upgraded.
testing/packages/PAM/gnome-keyring-3.36.0-x86_64-1_pam.txz:  Upgraded.
testing/packages/PAM/hplip-3.20.3-x86_64-1_pam.txz:  Upgraded.
+--------------------------+

Fri Mar 13 20:15:29 UTC 2020
a/cryptsetup-2.3.1-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20200309_3b3dd5a-noarch-1.txz:  Upgraded.
a/kernel-generic-5.4.25-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.25-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.25-x86_64-1.txz:  Upgraded.
ap/ghostscript-9.51-x86_64-1.txz:  Upgraded.
d/gcc-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-brig-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-g++-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-gdc-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-gfortran-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-gnat-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-go-9.3.0-x86_64-1.txz:  Upgraded.
d/gcc-objc-9.3.0-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.25-x86-1.txz:  Upgraded.
d/libtool-2.4.6-x86_64-13.txz:  Rebuilt.
  Recompiled to update embedded GCC version number.
d/rust-1.42.0-x86_64-1.txz:  Upgraded.
d/scons-3.1.2-x86_64-2.txz:  Rebuilt.
  Drop python2 support and switch to python3.
k/kernel-source-5.4.25-noarch-1.txz:  Upgraded.
  GCC_VERSION 90200 -> 90300
l/libuv-1.35.0-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.22.10-x86_64-1.txz:  Upgraded.
n/postfix-3.4.10-x86_64-1.txz:  Upgraded.
xap/blueman-2.1.2-x86_64-2.txz:  Rebuilt.
  This needed a rebuild for glib2-2.64.1. Thanks to Lockywolf.
xap/mozilla-thunderbird-68.6.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/68.6.0/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2020-10/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6805
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6806
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6807
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6811
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20503
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6812
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6814
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Sun Mar 15 19:50:24 UTC 2020
a/aaa_elflibs-15.0-x86_64-22.txz:  Rebuilt.
  Upgraded: libcap.so.2.33, libncurses.so.6.2, libncursesw.so.6.2,
  libpcre.so.1.2.12, libpcreposix.so.0.0.7, libtinfo.so.6.2, libform.so.6.2,
  libformw.so.6.2, libglib-2.0.so.0.6400.1, libgmodule-2.0.so.0.6400.1,
  libgobject-2.0.so.0.6400.1, libgthread-2.0.so.0.6400.1,
  liblber-2.4.so.2.10.12, libldap-2.4.so.2.10.12, libmenu.so.6.2,
  libmenuw.so.6.2, libpanel.so.6.2, libpanelw.so.6.2, libstdc++.so.6.0.28.
a/xfsprogs-5.5.0-x86_64-1.txz:  Upgraded.
ap/sudo-1.8.31p1-x86_64-1.txz:  Upgraded.
  This is a bugfix release:
  Sudo once again ignores a failure to restore the RLIMIT_CORE resource limit,
  as it did prior to version 1.8.29. Linux containers don't allow RLIMIT_CORE
  to be set back to RLIM_INFINITY if we set the limit to zero, even for root,
  which resulted in a warning from sudo.
d/help2man-1.47.13-x86_64-1.txz:  Upgraded.
d/perl-5.30.2-x86_64-1.txz:  Upgraded.
  Also upgraded to Devel-CheckLib-1.14, DBI-1.643, and IO-Socket-SSL-2.067.
n/ModemManager-1.12.8-x86_64-1.txz:  Upgraded.
n/bluez-5.54-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.2.131.2-x86_64-1.txz:  Upgraded.
+--------------------------+

Mon Mar 16 21:20:17 UTC 2020
a/kernel-firmware-20200316_8eb0b28-noarch-1.txz:  Upgraded.
l/imagemagick-7.0.10_1-x86_64-1.txz:  Upgraded.
l/qt5-webkit-5.212.0_alpha4-x86_64-1.txz:  Upgraded.
n/libqmi-1.24.8-x86_64-1.txz:  Upgraded.
n/postfix-3.5.0-x86_64-1.txz:  Upgraded.
+--------------------------+

Tue Mar 17 22:11:07 UTC 2020
Happy Feast of Saint Patrick. Stay safe everyone.
a/openssl-solibs-1.1.1e-x86_64-1.txz:  Upgraded.
d/ccache-3.7.8-x86_64-1.txz:  Upgraded.
l/glibmm-2.64.0-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1e-x86_64-1.txz:  Upgraded.
  Fixed an overflow bug in the x64_64 Montgomery squaring procedure
  used in exponentiation with 512-bit moduli.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1551
  (* Security fix *)
n/php-7.4.4-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  Core: get_headers() silently truncates after a null byte
  EXIF: Use-of-uninitialized-value in exif
  MBstring: mb_strtolower: stack-buffer-overflow at php_unicode_tolower_full
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7066
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7064
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7065
  (* Security fix *)
+--------------------------+

Thu Mar 19 01:45:30 UTC 2020
Don't bother with 5.4.26 folks, just wait for the next one. Trust me.
a/tcsh-6.22.02-x86_64-2.txz:  Rebuilt.
  Fixed merging history from multiple shells. Thanks to jmccue.
a/xz-5.2.5-x86_64-1.txz:  Upgraded.
d/git-2.25.2-x86_64-1.txz:  Upgraded.
l/glibmm-2.64.1-x86_64-1.txz:  Upgraded.
n/bind-9.16.1-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.10-x86_64-2.txz:  Rebuilt.
x/libinput-1.15.4-x86_64-1.txz:  Upgraded.
x/mesa-20.0.2-x86_64-1.txz:  Upgraded.
testing/packages/PAM/dovecot-2.3.10-x86_64-2_pam.txz:  Rebuilt.
  Recompiled using --with-pam. Thanks to HQuest.
+--------------------------+

Thu Mar 19 22:01:05 UTC 2020
ap/ghostscript-9.52-x86_64-1.txz:  Upgraded.
l/PyQt5-5.13.2-x86_64-1.txz:  Added.
l/QScintilla-2.11.4-x86_64-3.txz:  Rebuilt.
  Added PyQt5 support. Thanks to alienBOB.
l/sip-4.19.21-x86_64-2.txz:  Rebuilt.
  Recompiled to pick up Qt5 support.
n/gpgme-1.13.1-x86_64-3.txz:  Rebuilt.
  Added Qt5 bindings. Thanks to alienBOB.
+--------------------------+

Fri Mar 20 18:58:08 UTC 2020
a/kernel-firmware-20200320_edf390c-noarch-1.txz:  Upgraded.
ap/vim-8.2.0418-x86_64-1.txz:  Upgraded.
d/cmake-3.17.0-x86_64-1.txz:  Upgraded.
l/fuse3-3.9.1-x86_64-1.txz:  Upgraded.
x/igt-gpu-tools-1.25-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.2.0418-x86_64-1.txz:  Upgraded.
+--------------------------+

Sun Mar 22 01:55:55 UTC 2020
a/kernel-generic-5.4.27-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.27-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.27-x86_64-1.txz:  Upgraded.
a/tcsh-6.22.02-x86_64-3.txz:  Rebuilt.
  Actually apply the shell history patch this time. Thanks to jmccue.
ap/cups-filters-1.27.3-x86_64-1.txz:  Upgraded.
d/automake-1.16.2-noarch-1.txz:  Upgraded.
d/kernel-headers-5.4.27-x86-1.txz:  Upgraded.
d/parallel-20200322-noarch-1.txz:  Upgraded.
k/kernel-source-5.4.27-noarch-1.txz:  Upgraded.
l/gmime-3.2.7-x86_64-1.txz:  Upgraded.
l/pangomm-2.42.1-x86_64-1.txz:  Upgraded.
n/gnupg2-2.2.20-x86_64-1.txz:  Upgraded.
xap/xaos-3.7-x86_64-1.txz:  Upgraded.
xap/xscreensaver-5.44-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/PAM/xscreensaver-5.44-x86_64-1_pam.txz:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Sun Mar 22 19:58:16 UTC 2020
l/glibmm-2.64.2-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_2-x86_64-1.txz:  Upgraded.
l/libcue-2.2.1-x86_64-1.txz:  Added.
  The initial use for this is adding CUE support to audacious-plugins.
l/libdvdnav-6.1.0-x86_64-1.txz:  Upgraded.
l/libdvdread-6.1.0-x86_64-1.txz:  Upgraded.
xap/audacious-4.0-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.0-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0-x86_64-1_alsa.txz:  Upgraded.
+--------------------------+

Tue Mar 24 05:08:25 UTC 2020
n/curl-7.69.1-x86_64-3.txz:  Rebuilt.
  Removed --with-ca-bundle=/usr/share/curl/ca-bundle.crt and
  added --without-ca-bundle. Thanks to drgibbon and Willy Sudiarto Raharjo.
+--------------------------+
Mon Mar 23 20:03:39 UTC 2020
a/e2fsprogs-1.45.6-x86_64-1.txz:  Upgraded.
d/git-2.26.0-x86_64-1.txz:  Upgraded.
l/gd-2.3.0-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  Potential double-free in gdImage*Ptr().
  gdImageColorMatch() out of bounds write on heap.
  Uninitialized read in gdImageCreateFromXbm().
  Double-free in gdImageBmp.
  Potential NULL pointer dereference in gdImageClone().
  Potential infinite loop in gdImageCreateFromGifCtx().
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6978
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6977
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11038
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000222
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14553
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5711
  (* Security fix *)
l/libbluray-1.2.0-x86_64-1.txz:  Upgraded.
n/curl-7.69.1-x86_64-2.txz:  Rebuilt.
  Use --with-ca-path=/etc/ssl/certs instead of
  --with-ca-bundle=/usr/share/curl/ca-bundle.crt. Thanks to shastah.
xap/audacious-4.0-x86_64-2.txz:  Rebuilt.
  Rebuilt with autotools to fix French language support. Thanks to gmgf.
xap/audacious-plugins-4.0-x86_64-2.txz:  Rebuilt.
  Rebuilt with autotools.
extra/pure-alsa-system/audacious-plugins-4.0-x86_64-2_alsa.txz:  Rebuilt.
+--------------------------+

Wed Mar 25 22:53:06 UTC 2020
a/e2fsprogs-1.45.6-x86_64-2.txz:  Rebuilt.
  Fixed RELEASE-NOTES dangling symlink.
a/kernel-generic-5.4.28-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.28-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.28-x86_64-1.txz:  Upgraded.
ap/nano-4.9-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.28-x86-1.txz:  Upgraded.
d/llvm-10.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
d/rust-1.42.0-x86_64-2.txz:  Rebuilt.
  Recompiled against llvm-10.0.0.
d/scons-3.1.2-x86_64-3.txz:  Rebuilt.
  Fixed shebangs for python3, removed useless .bat files.
  Thanks to teeemcee and ponce.
d/vala-0.48.2-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.28-noarch-1.txz:  Upgraded.
l/libgsf-1.14.47-x86_64-1.txz:  Upgraded.
l/neon-0.31.0-x86_64-1.txz:  Upgraded.
l/netpbm-10.89.03-x86_64-1.txz:  Upgraded.
l/qt5-5.13.2-x86_64-3.txz:  Rebuilt.
  Recompiled against llvm-10.0.0.
x/mesa-20.0.2-x86_64-2.txz:  Rebuilt.
  Recompiled against llvm-10.0.0.
xfce/thunar-1.8.14-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Thu Mar 26 22:37:06 UTC 2020
x/libwacom-1.3-x86_64-1.txz:  Upgraded.
+--------------------------+

Sat Mar 28 05:48:42 UTC 2020
a/lvm2-2.03.09-x86_64-1.txz:  Upgraded.
d/guile-3.0.2-x86_64-1.txz:  Upgraded.
l/glib-networking-2.64.1-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.16-x86_64-1.txz:  Upgraded.
l/gvfs-1.44.1-x86_64-1.txz:  Upgraded.
l/librsvg-2.48.1-x86_64-1.txz:  Upgraded.
l/vte-0.60.1-x86_64-1.txz:  Upgraded.
xap/audacious-4.0-x86_64-3.txz:  Rebuilt.
  Also support GTK+ interface, including a .desktop file for it.
xap/audacious-plugins-4.0-x86_64-3.txz:  Rebuilt.
  Rebuilt with --enable-gtk.
extra/pure-alsa-system/audacious-plugins-4.0-x86_64-3_alsa.txz:  Rebuilt.
  Rebuilt with --enable-gtk.
extra/pure-alsa-system/qt5-5.13.2-x86_64-3_alsa.txz:  Added.
+--------------------------+

Sun Mar 29 23:05:46 UTC 2020
d/ccache-3.7.9-x86_64-1.txz:  Upgraded.
d/llvm-10.0.0-x86_64-2.txz:  Rebuilt.
  Ensure that lit-cpuid is built and installed. Thanks to jkh2cpu.
l/imagemagick-7.0.10_3-x86_64-1.txz:  Upgraded.
l/netpbm-10.90.00-x86_64-1.txz:  Upgraded.
n/mutt-1.13.5-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.4.3-x86_64-2.txz:  Rebuilt.
  Rebuilt with --with-pluginpath=/usr/lib${LIBDIRSUFFIX}/libnfsidmap.
  Thanks to lecho.
x/xorg-server-1.20.8-x86_64-1.txz:  Upgraded.
x/xorg-server-xephyr-1.20.8-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-1.20.8-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-1.20.8-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-1.20.8-x86_64-1.txz:  Upgraded.
+--------------------------+

Tue Mar 31 04:00:43 UTC 2020
a/pkgtools-15.0-noarch-31.txz:  Rebuilt.
  removepkg: support an uninstall script. See removepkg(8).
d/meson-0.54.0-x86_64-1.txz:  Upgraded.
+--------------------------+

Tue Mar 31 19:01:17 UTC 2020
a/dialog-1.3_20200327-x86_64-1.txz:  Upgraded.
a/openssl-solibs-1.1.1f-x86_64-1.txz:  Upgraded.
ap/nano-4.9.1-x86_64-1.txz:  Upgraded.
l/elfutils-0.179-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.13-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  libgnutls: Fix a DTLS-protocol regression (caused by TLS1.3 support),
  since 3.6.3. The DTLS client would not contribute any randomness to the
  DTLS negotiation, breaking the security guarantees of the DTLS protocol.
  [GNUTLS-SA-2020-03-31, CVSS: high]
  (* Security fix *)
n/httpd-2.4.43-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1f-x86_64-1.txz:  Upgraded.
+--------------------------+

Thu Apr  2 06:07:52 UTC 2020
a/hwdata-0.334-noarch-1.txz:  Upgraded.
a/kernel-generic-5.4.29-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.29-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.29-x86_64-1.txz:  Upgraded.
a/pkgtools-15.0-noarch-32.txz:  Rebuilt.
  installpkg: handle the uninstall script packaged as /install/douninst.sh.
  removepkg: add --skip-douninst option to skip running the uninstall script.
    Save removed douninst.sh in /var/log/pkgtools/removed_uninstall_scripts.
ap/groff-1.22.4-x86_64-2.txz:  Rebuilt.
  Fixed docdir. Thanks to Xsane.
d/gcc-9.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-brig-9.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-g++-9.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-gdc-9.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-gfortran-9.3.0-x86_64-2.txz:  Rebuilt.
  Patched a compiler bug concerning assumed-shape vs. deferred-shape arrays.
  Thanks to Lockywolf.
d/gcc-gnat-9.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-go-9.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-objc-9.3.0-x86_64-2.txz:  Rebuilt.
d/kernel-headers-5.4.29-x86-1.txz:  Upgraded.
d/ruby-2.7.1-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  Unsafe Object Creation Vulnerability in JSON (Additional fix).
  Heap exposure vulnerability in the socket library.
  For more information, see:
    https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/
    https://www.ruby-lang.org/en/news/2020/03/31/heap-exposure-in-socket-cve-2020-10933/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10663
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10933
  (* Security fix *)
k/kernel-source-5.4.29-noarch-1.txz:  Upgraded.
l/graphite2-1.3.14-x86_64-1.txz:  Upgraded.
l/librsvg-2.48.2-x86_64-1.txz:  Upgraded.
l/utf8proc-2.5.0-x86_64-1.txz:  Upgraded.
x/libva-2.7.0-x86_64-1.txz:  Upgraded.
x/libva-utils-2.7.1-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Fri Apr  3 23:07:16 UTC 2020
ap/lsof-4.93.2-x86_64-2.txz:  Rebuilt.
  Fixed the manpage. Thanks to kaott.
ap/sc-7.16-x86_64-7.txz:  Rebuilt.
  Brought back the classic SC. Thanks to dive.
d/Cython-0.29.16-x86_64-1.txz:  Upgraded.
d/mercurial-5.3.2-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.17-x86_64-1.txz:  Upgraded.
n/dhcpcd-8.1.7-x86_64-1.txz:  Upgraded.
n/iproute2-5.6.0-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.101-x86_64-1.txz:  Upgraded.
x/mesa-20.0.4-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-68.6.1esr-x86_64-1.txz:  Upgraded.
  This release contains critical security fixes and improvements.
  "Under certain conditions, when running the nsDocShell destructor, a race
  condition can cause a use-after-free. We are aware of targeted attacks in
  the wild abusing this flaw."
  "Under certain conditions, when handling a ReadableStream, a race condition
  can cause a use-after-free. We are aware of targeted attacks in the wild
  abusing this flaw."
  For more information, see:
    https://www.mozilla.org/en-US/firefox/68.6.1/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6819
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6820
  (* Security fix *)
+--------------------------+

Sat Apr  4 19:22:23 UTC 2020
ap/sc-7.16-x86_64-8.txz:  Rebuilt.
  Fixed permissions on installed binaries. Thanks to mats_b_tegner.
ap/sc-im-20200210_862c273-x86_64-1.txz:  Upgraded.
  Switched to pulling from git to fix various crashes.
x/glew-2.2.0-x86_64-1.txz:  Upgraded.
+--------------------------+

Sun Apr  5 01:33:45 UTC 2020
kde/calligra-2.9.11-x86_64-34.txz:  Rebuilt.
  Recompiled against glew-2.2.0.
  The libGLEW.so.2.2 .soname (rather than libGLEW.so.2) gets me every time.
  Thanks to marrowsuck for the bug report.
l/libdvdread-6.1.1-x86_64-1.txz:  Upgraded.
x/mesa-20.0.4-x86_64-2.txz:  Rebuilt.
  Recompiled against glew-2.2.0.
+--------------------------+

Sun Apr  5 21:02:32 UTC 2020
d/bison-3.5.4-x86_64-1.txz:  Upgraded.
kde/k3b-2.0.3-x86_64-7.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
l/gobject-introspection-1.64.1-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_4-x86_64-1.txz:  Upgraded.
l/libdvdnav-6.1.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
  Who bumps an .soname and only boosts the version number by 0.0.1?
  Anyway, sorry to drop the ball a second time. I'll try to avoid this.
  Thanks to gmgf for the bug report.
n/fetchmail-6.4.3-x86_64-1.txz:  Upgraded.
tcl/tclx-8.4.4-x86_64-1.txz:  Upgraded.
xap/MPlayer-20200103-x86_64-2.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
xap/windowmaker-0.95.9-x86_64-1.txz:  Upgraded.
xap/xine-lib-1.2.10-x86_64-2.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/MPlayer-20200103-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/xine-lib-1.2.10-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
+--------------------------+

Mon Apr  6 21:23:19 UTC 2020
ap/vim-8.2.0521-x86_64-1.txz:  Upgraded.
d/vala-0.48.3-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_5-x86_64-1.txz:  Upgraded.
x/compiz-0.8.18-x86_64-1.txz:  Upgraded.
xap/audacious-4.0.1-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.0.1-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.2.0521-x86_64-1.txz:  Upgraded.
extra/brltty/brltty-6.1-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.1-x86_64-1_alsa.txz:  Upgraded.
testing/packages/PAM/sudo-1.8.31p1-x86_64-1_pam.txz:  Upgraded.
+--------------------------+

Tue Apr  7 22:23:02 UTC 2020
testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txz:  Upgraded.
+--------------------------+
Tue Apr  7 21:19:42 UTC 2020
a/btrfs-progs-5.6-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.27.3-x86_64-2.txz:  Rebuilt.
  Recompiled against qpdf-10.0.0.
ap/nano-4.9.2-x86_64-1.txz:  Upgraded.
ap/qpdf-10.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
d/strace-5.6-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_6-x86_64-1.txz:  Upgraded.
l/python-pygments-2.5.2-x86_64-2.txz:  Rebuilt.
  Rebuilt to fix stale signature on some mirrors.
  Thanks to Xsane and Petri Kaukasoina.
xap/mozilla-firefox-68.7.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/68.7.0/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2020-13/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6828
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6827
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6821
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6822
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6825
  (* Security fix *)
+--------------------------+

Thu Apr  9 00:53:59 UTC 2020
a/kernel-generic-5.4.31-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.31-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.31-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.31-x86-1.txz:  Upgraded.
k/kernel-source-5.4.31-noarch-1.txz:  Upgraded.
l/mozilla-nss-3.51.1-x86_64-1.txz:  Upgraded.
n/samba-4.12.1-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-68.7.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/68.7.0/releasenotes/
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
+--------------------------+

Thu Apr  9 22:20:10 UTC 2020
d/cmake-3.17.1-x86_64-1.txz:  Upgraded.
l/glib2-2.64.2-x86_64-1.txz:  Upgraded.
l/libssh-0.9.4-x86_64-1.txz:  Upgraded.
  Fixed possible DoS in client and server when handling AES-CTR keys
  with OpenSSL.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1730
  (* Security fix *)
+--------------------------+