diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-05-17 20:59:51 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-05-18 13:30:28 +0200 |
commit | 907d5f4ae7a80cf6b3a0e8cc4977bcd99b346452 (patch) | |
tree | e476abe9c61d54705720cf2cc436643e44900140 /ChangeLog.txt | |
parent | 9a6aad82a0ff93ba3e2056adda7dd2f2817e66e6 (diff) | |
download | current-907d5f4ae7a80cf6b3a0e8cc4977bcd99b346452.tar.gz current-907d5f4ae7a80cf6b3a0e8cc4977bcd99b346452.tar.xz |
Wed May 17 20:59:51 UTC 202320230517205951_15.0
patches/packages/curl-8.1.0-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
more POST-after-PUT confusion.
IDN wildcard match.
siglongjmp race condition.
UAF in SSH sha256 fingerprint check.
For more information, see:
https://curl.se/docs/CVE-2023-28322.html
https://curl.se/docs/CVE-2023-28321.html
https://curl.se/docs/CVE-2023-28320.html
https://curl.se/docs/CVE-2023-28319.html
https://www.cve.org/CVERecord?id=CVE-2023-28322
https://www.cve.org/CVERecord?id=CVE-2023-28321
https://www.cve.org/CVERecord?id=CVE-2023-28320
https://www.cve.org/CVERecord?id=CVE-2023-28319
(* Security fix *)
patches/packages/bind-9.16.41-x86_64-1_slack15.0.txz: Upgraded.
This is a bugfix release.
testing/packages/bind-9.18.15-x86_64-1_slack15.0.txz: Upgraded.
This is a bugfix release.
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 5c9f7988d..27ed9a0fb 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,25 @@ +Wed May 17 20:59:51 UTC 2023 +patches/packages/curl-8.1.0-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + more POST-after-PUT confusion. + IDN wildcard match. + siglongjmp race condition. + UAF in SSH sha256 fingerprint check. + For more information, see: + https://curl.se/docs/CVE-2023-28322.html + https://curl.se/docs/CVE-2023-28321.html + https://curl.se/docs/CVE-2023-28320.html + https://curl.se/docs/CVE-2023-28319.html + https://www.cve.org/CVERecord?id=CVE-2023-28322 + https://www.cve.org/CVERecord?id=CVE-2023-28321 + https://www.cve.org/CVERecord?id=CVE-2023-28320 + https://www.cve.org/CVERecord?id=CVE-2023-28319 + (* Security fix *) +patches/packages/bind-9.16.41-x86_64-1_slack15.0.txz: Upgraded. + This is a bugfix release. +testing/packages/bind-9.18.15-x86_64-1_slack15.0.txz: Upgraded. + This is a bugfix release. ++--------------------------+ Sun May 14 17:03:16 UTC 2023 extra/php80/php80-8.0.28-x86_64-2_slack15.0.txz: Rebuilt. This update removes extension=xmlrpc from the php.ini files. |