Thu Sep 21 19:32:42 UTC 202320230921193242_15.0

patches/packages/bind-9.16.44-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and a security issue:
  Limit the amount of recursion that can be performed by isccc_cc_fromwire.
  For more information, see:
    https://kb.isc.org/docs/cve-2023-3341
    https://www.cve.org/CVERecord?id=CVE-2023-3341
  (* Security fix *)
patches/packages/cups-2.4.7-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and a security issue:
  Fixed Heap-based buffer overflow when reading Postscript in PPD files.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-4504
  (* Security fix *)
patches/packages/mozilla-thunderbird-115.2.3-x86_64-1_slack15.0.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/115.2.3/releasenotes/
patches/packages/seamonkey-2.53.17.1-x86_64-1_slack15.0.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.seamonkey-project.org/releases/seamonkey2.53.17.1
    https://www.cve.org/CVERecord?id=CVE-2023-4863
  (* Security fix *)
testing/packages/bind-9.18.19-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  Limit the amount of recursion that can be performed by isccc_cc_fromwire.
  Fix use-after-free error in TLS DNS code when sending data.
  For more information, see:
    https://kb.isc.org/docs/cve-2023-3341
    https://www.cve.org/CVERecord?id=CVE-2023-3341
    https://kb.isc.org/docs/cve-2023-4236
    https://www.cve.org/CVERecord?id=CVE-2023-4236
  (* Security fix *)

1 files changed, 35 insertions, 0 deletions

diff --git a/ChangeLog.txt b/ChangeLog.txt
index e3b3b1fad..4fc956061 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,38 @@
+Thu Sep 21 19:32:42 UTC 2023
+patches/packages/bind-9.16.44-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes bugs and a security issue:
+  Limit the amount of recursion that can be performed by isccc_cc_fromwire.
+  For more information, see:
+    https://kb.isc.org/docs/cve-2023-3341
+    https://www.cve.org/CVERecord?id=CVE-2023-3341
+  (* Security fix *)
+patches/packages/cups-2.4.7-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes bugs and a security issue:
+  Fixed Heap-based buffer overflow when reading Postscript in PPD files.
+  For more information, see:
+    https://www.cve.org/CVERecord?id=CVE-2023-4504
+  (* Security fix *)
+patches/packages/mozilla-thunderbird-115.2.3-x86_64-1_slack15.0.txz:  Upgraded.
+  This is a bugfix release.
+  For more information, see:
+    https://www.mozilla.org/en-US/thunderbird/115.2.3/releasenotes/
+patches/packages/seamonkey-2.53.17.1-x86_64-1_slack15.0.txz:  Upgraded.
+  This update contains security fixes and improvements.
+  For more information, see:
+    https://www.seamonkey-project.org/releases/seamonkey2.53.17.1
+    https://www.cve.org/CVERecord?id=CVE-2023-4863
+  (* Security fix *)
+testing/packages/bind-9.18.19-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes bugs and security issues:
+  Limit the amount of recursion that can be performed by isccc_cc_fromwire.
+  Fix use-after-free error in TLS DNS code when sending data.
+  For more information, see:
+    https://kb.isc.org/docs/cve-2023-3341
+    https://www.cve.org/CVERecord?id=CVE-2023-3341
+    https://kb.isc.org/docs/cve-2023-4236
+    https://www.cve.org/CVERecord?id=CVE-2023-4236
+  (* Security fix *)
++--------------------------+
 Mon Sep 18 18:40:04 UTC 2023
 patches/packages/netatalk-3.1.17-x86_64-1_slack15.0.txz:  Upgraded.
   This update fixes bugs and a security issue: