diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-06-02 20:56:35 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-06-02 23:45:41 +0200 |
commit | 8b137cd8352b84bf56b01414f58a6d55a99d22a6 (patch) | |
tree | f73aeff466f3d465f4e24864a08658966c0f8d80 /ChangeLog.txt | |
parent | a9c0ca9f8fa5a0a244f0f0f7b0c2623df807b494 (diff) | |
download | current-8b137cd8352b84bf56b01414f58a6d55a99d22a6.tar.gz current-8b137cd8352b84bf56b01414f58a6d55a99d22a6.tar.xz |
Fri Jun 2 20:56:35 UTC 202320230602205635
a/hwdata-0.371-noarch-1.txz: Upgraded.
ap/cups-2.4.3-x86_64-1.txz: Upgraded.
Fixed a heap buffer overflow in _cups_strlcpy(), when the configuration file
cupsd.conf sets the value of loglevel to DEBUG, that could allow a remote
attacker to launch a denial of service (DoS) attack, or possibly execute
arbirary code.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-32324
(* Security fix *)
d/git-2.41.0-x86_64-1.txz: Upgraded.
d/llvm-16.0.5-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-29.txz: Rebuilt.
Recompiled against Imath-3.1.9.
kde/kimageformats-5.106.0-x86_64-3.txz: Rebuilt.
Recompiled against Imath-3.1.9.
kde/kio-extras-23.04.1-x86_64-3.txz: Rebuilt.
Recompiled against Imath-3.1.9.
kde/krita-5.1.5-x86_64-9.txz: Rebuilt.
Recompiled against Imath-3.1.9.
l/Imath-3.1.9-x86_64-1.txz: Upgraded.
Evidently the shared library .so-version bump in Imath-3.1.8 should not have
happened, so this update reverts it to the previous value.
l/gst-plugins-bad-free-1.22.3-x86_64-3.txz: Rebuilt.
Recompiled against Imath-3.1.9.
l/imagemagick-7.1.1_11-x86_64-2.txz: Rebuilt.
Recompiled against Imath-3.1.9.
l/mozjs102-102.12.0esr-x86_64-1.txz: Upgraded.
l/openexr-3.1.7-x86_64-3.txz: Rebuilt.
Recompiled against Imath-3.1.9.
l/serf-1.3.10-x86_64-1.txz: Upgraded.
l/vte-0.72.2-x86_64-1.txz: Upgraded.
n/nettle-3.9.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p16-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-26551
https://www.cve.org/CVERecord?id=CVE-2023-26552
https://www.cve.org/CVERecord?id=CVE-2023-26553
https://www.cve.org/CVERecord?id=CVE-2023-26554
https://www.cve.org/CVERecord?id=CVE-2023-26555
(* Security fix *)
n/samba-4.18.3-x86_64-1.txz: Upgraded.
tcl/tclx-8.6.2-x86_64-1.txz: Upgraded.
x/ibus-libpinyin-1.15.3-x86_64-1.txz: Upgraded.
x/libX11-1.8.5-x86_64-1.txz: Upgraded.
xap/gimp-2.10.34-x86_64-4.txz: Rebuilt.
Recompiled against Imath-3.1.9.
xfce/xfce4-pulseaudio-plugin-0.4.7-x86_64-1.txz: Upgraded.
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index b0dc94aa9..c94c8a9cf 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,53 @@ +Fri Jun 2 20:56:35 UTC 2023 +a/hwdata-0.371-noarch-1.txz: Upgraded. +ap/cups-2.4.3-x86_64-1.txz: Upgraded. + Fixed a heap buffer overflow in _cups_strlcpy(), when the configuration file + cupsd.conf sets the value of loglevel to DEBUG, that could allow a remote + attacker to launch a denial of service (DoS) attack, or possibly execute + arbirary code. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2023-32324 + (* Security fix *) +d/git-2.41.0-x86_64-1.txz: Upgraded. +d/llvm-16.0.5-x86_64-1.txz: Upgraded. +kde/calligra-3.2.1-x86_64-29.txz: Rebuilt. + Recompiled against Imath-3.1.9. +kde/kimageformats-5.106.0-x86_64-3.txz: Rebuilt. + Recompiled against Imath-3.1.9. +kde/kio-extras-23.04.1-x86_64-3.txz: Rebuilt. + Recompiled against Imath-3.1.9. +kde/krita-5.1.5-x86_64-9.txz: Rebuilt. + Recompiled against Imath-3.1.9. +l/Imath-3.1.9-x86_64-1.txz: Upgraded. + Evidently the shared library .so-version bump in Imath-3.1.8 should not have + happened, so this update reverts it to the previous value. +l/gst-plugins-bad-free-1.22.3-x86_64-3.txz: Rebuilt. + Recompiled against Imath-3.1.9. +l/imagemagick-7.1.1_11-x86_64-2.txz: Rebuilt. + Recompiled against Imath-3.1.9. +l/mozjs102-102.12.0esr-x86_64-1.txz: Upgraded. +l/openexr-3.1.7-x86_64-3.txz: Rebuilt. + Recompiled against Imath-3.1.9. +l/serf-1.3.10-x86_64-1.txz: Upgraded. +l/vte-0.72.2-x86_64-1.txz: Upgraded. +n/nettle-3.9.1-x86_64-1.txz: Upgraded. +n/ntp-4.2.8p16-x86_64-1.txz: Upgraded. + This update fixes bugs and security issues. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2023-26551 + https://www.cve.org/CVERecord?id=CVE-2023-26552 + https://www.cve.org/CVERecord?id=CVE-2023-26553 + https://www.cve.org/CVERecord?id=CVE-2023-26554 + https://www.cve.org/CVERecord?id=CVE-2023-26555 + (* Security fix *) +n/samba-4.18.3-x86_64-1.txz: Upgraded. +tcl/tclx-8.6.2-x86_64-1.txz: Upgraded. +x/ibus-libpinyin-1.15.3-x86_64-1.txz: Upgraded. +x/libX11-1.8.5-x86_64-1.txz: Upgraded. +xap/gimp-2.10.34-x86_64-4.txz: Rebuilt. + Recompiled against Imath-3.1.9. +xfce/xfce4-pulseaudio-plugin-0.4.7-x86_64-1.txz: Upgraded. ++--------------------------+ Wed May 31 19:14:23 UTC 2023 a/elogind-252.9-x86_64-2.txz: Rebuilt. Fix reloading elogind-daemon on package upgrade. Thanks to opty. |