[SOLVED] security advisories that are not posted

jennings · 03-29-2017, 07:31 AM

I like to download security updates by using wget to sync a local folder to the ftp.slackware.com/pub/slackware-14.2/patches/packages, for example. And then I manually run upgradepkg on anything new (ls -lrt). But, occasionally there is a package not listed on the security advisory page such as glibc-zoneinfo-2017a or today with firefox-52.0.2esr. Just curious as to why this is and if I should not be installing anything not listed on the security advisory page. Thanks.

bassmadrigal · 03-29-2017, 08:01 AM

Those packages aren't being upgraded because of security advisories. For those specific two you mentioned, the glibc-zoneinfo was updated due to world timezone changes, so computers would have their times correct. And Firefox was updated to the latest ESR branch to ensure continued updates.

If you use RSS readers, it might be beneficial to use an RSS feed for Slackware's updates. This will notify you of any updates, regardless of whether they're security based or not.

http://mirrors.slackware.com/feeds/
https://slackbuilds.org/mirror/rss/

jennings · 03-29-2017, 08:15 AM

Oh! Makes sense, thanks!