Apologies for the delay, I was out of town, but i have finally uploaded my new chromium 103 packages for Slackware 14.2 and newer. Their un-googled siblings are also available. Thanks as always to Eloston and his friends for updating the patch-set for ungoogled-chromium.
Last week saw a Google Chromium update which addresses a series of vulnerabilities, which is nothing new of course, but in particular one security hole that has now been patched would allow remote attackers to take control of your computer and execute arbitrary code. See CVE-2022-2156. An update of your installed browser package seems in order.
You can find the Chromium packages (version 103.0.5060.53) at the usual places: my own repositories of course (or any mirror):
Google has released the sources for Chromium 102.0.5005.61. The release notes mention 32 security fixes. One of those (CVE-2022-1853) is listed as ‘critical’ and supposedly an attacker can craft a website in such a way that if you visit that URL, the attacker can compromise or take over your local computer. No clicking required.
And again it proves to be quite hard to compile 32bit packages for the new Chromium.
The Google developers create new hurdles almost every major release in their ‘assumption’ that there is no 32bit Linux out there that they should support. I am still working out what I need to fix/patch.
Therefore you can only get 64bit chromium packages here (NL mirror) or here (US mirror). Likewise the chromium-ungoogled packages (64bit only) are found here (NL mirror) or here (US mirror).
LibreOffice Community Edition is now at version 7.3.3. Read yesterday’s announcement on the Document Foundation blog to get the details of this incremental (bug-fix) update.
The 7.3.x releases are the bleeding edge of this popular office suite but nevertheless really stable software.
Support for Microsoft’s proprietary DOCX, XLSX and PPTX files will probably never be 100% spot-on but there is no other Open Source office suite that comes close to the excellent interoperability that LibreOffice offers.
A new set of libreoffice-7.3.3 packages for Slackware 15.0 and -current is now available in my repository.
Note that I compiled them on Slackware 15.0 so if you install them on Slackware -current you will also need to install ‘icu4c-compat‘. This is another package in my repository which contains older versions of the icu4c libraries, in particular the version that is part of Slackware 15.0 but no longer part of -current.
I also provided an incremental update for regular and un-googled Chromium as part of Google’s bug-fix program.
Updated packages for chromium and chromium-ungoogled bring the version of this browser to 101.0.4951.54, supporting Slackware 14.2 and newer.
They can be downloaded from the usual places like http://www.slackware.com/~alien/slackbuilds/ , http://slackware.nl/people/alien/slackbuilds/ , http://us.slackware.nl/people/alien/slackbuilds/ or http://slackware.uk/people/alien/slackbuilds/ .
Earlier this week, Chromium 101.0.4951.41 was released according the announcement on Google’s releaseblog.
As usual, this release addresses several vulnerabilities of which some have the criticality label “high” – meaning it can crash your browser but not compromise your computer. Interesting again to see an impressive list of high/medium/low vulnerabilities (a total of 30 this time) for which Google paid bounties of over 80,000 dollars in total to their individual reporters.
Get chromium packages here (NL mirror) or here (US mirror).
The chromium-ungoogled packages are currently being compiled but that takes more than 8 hours per package… so a bit of patience is required. Once they are ready you’ll find them here (NL mirror) or here (US mirror).
I have uploaded new chromium 100 packages for Slackware. The chromium-ungoogled 100 packages are currently being built and will follow shortly.
What’s with all these updates that follow rapidly on each others’ heels? Just like the recent Chromium 99 security update which addressed a single critical vulnerability, last monday Google announced on their official blog the immediate availability of Chromium 100.0.4896.75. This hotfix release plugs a single hole which Google deemed serious enough to warrant the update. See CVE-2022-1232. The difference with last week is that no known exploit of this vulnerability is reported yet.
Still, it’s highly recommended that you upgrade ASAP.
My Chromium 100.0.4896.75 packages can be downloaded from my own repository (or any mirror that has synced up), for instance: