gnu: ccid: Update to 1.4.27.
* gnu/packages/security-token.scm (ccid): Update to 1.4.27.
gnu: fio: Update to 2.20.
* gnu/packages/benchmark.scm (fio): Update to 2.20.
[arguments]<#:phases>: Drop removed script from 'move-outputs' phase.
gnu: nano: Update to 2.8.4.
* gnu/packages/nano.scm (nano): Update to 2.8.4.
gnu: vim: Update to 8.0.0600.
* gnu/packages/vim.scm (vim, vim-full): Update to 8.0.0600.
gnu: vim-full: Disable failing test.
* gnu/packages/vim.scm (vim-full)[arguments]<#:phases>: Add substitution.
gnu: linux-libre: Update to 4.11.2.
* gnu/packages/linux.scm (%linux-libre-version): Update to 4.11.2.
(%linux-libre-hash): Update hash.
gnu: linux-libre: Remove CONFIG_SMC from x86 kernel configurations.
This removes support for the "shared memory communications over RDMA" (SMC-R)
networking protocol, which was added in 4.11 without the knowledge of the RDMA
maintainers, and which is thought to contain significant security flaws. For
details, see <https://lwn.net/Articles/723081> and
<https://lwn.net/Articles/723070>.
* gnu/packages/aux-files/linux-libre/4.11-x86_64.conf,
gnu/packages/aux-files/linux-libre/4.11-i686.conf: Disable CONFIG_SMC.
723# 0001-gnu-libevent-2.0-Add-fix-from-upstream.patch
gnu: linux-libre@4.9: Update to 4.9.29.
* gnu/packages/linux.scm (linux-libre-4.9): Update to 4.9.29.
gnu: linux-libre@4.4: Update to 4.4.69.
* gnu/packages/linux.scm (linux-libre-4.4): Update to 4.4.69.
gnu: unionfs-fuse-static: Remove 'unionfsctl' executable.
This avoids pulling in glibc & co. Fixes a regression introduced in
2f861edf5cf5118ad560737343312c9a5efe5b2f (the 'unionfsctl' executable
did not exist in unionfs-fuse 0.26).
* gnu/packages/linux.scm (unionfs-fuse/static)[arguments]
<post-install>: Remove 'unionfsctl' binary.
vm: Increase default disk size to account for ESP partition.
Fixes a test regression introduced by ecf5d5376979fadd971559367bf553df89fcc62b.
* gnu/system/vm.scm (system-qemu-image/shared-store-script): 30MiB -> 70MiB.
gnu: ghostscript: Add TODO comment about bundled jbig2dec.
* gnu/packages/ghostscript.scm (ghostscript): Add comment.
gnu: jbig2dec: Fix CVE-2017-{7885,7975,7976}.
* gnu/packages/patches/jbig2dec-CVE-2017-7885.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7975.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7976.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (jbig2dec)[source]: Use them.
gnu: pcsc-lite: Update to 1.8.21.
* gnu/packages/security-token.scm (pcsc-lite): Update to 1.8.21.
gnu: icedtea@3: Add aarch32-drop.
* gnu/packages/java.scm (icedtea-8)[native-inputs]: Add aarch32-drop.
gnu: icedtea@3: Update to 3.4.0 [security fixes].
Fixes CVE-2017-{3509,3511,3512,3514,3526,3533,3539,3544}.
* gnu/packages/java.scm (icedtea-8): Update to 3.4.0.
gnu: imagemagick: Update to 6.9.8-6.
* gnu/packages/imagemagick.scm (imagemagick): Update to 6.9.8-6.
download: Prune the ImageMagick mirror list.
These sites' TLS certificates are invalid.
* guix/download.scm (%mirrors) <imagemagick>: Remove
mirrors-{au,ru,uk}.go-parts.com.
gnu: guix: Add 'guile2.0-guix'.
* gnu/packages/package-management.scm (guile2.0-guix): New variable.
gnu: libssh, guile-ssh: Add a "debug" output.
* gnu/packages/ssh.scm (libssh)[outputs]: New field.
(guile-ssh)[outputs]: New field.