diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2024-02-07 20:07:29 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2024-02-08 13:30:44 +0100 |
commit | edf4df250ac508cf24ae94b16de92ec8b097ea34 (patch) | |
tree | b2d6d3ecf2b3b998c4c7b1718b337e868942e4e4 /ChangeLog.txt | |
parent | bc19f3bbd2593a1216aad20bbbff8996055565ed (diff) | |
download | current-edf4df250ac508cf24ae94b16de92ec8b097ea34.tar.gz current-edf4df250ac508cf24ae94b16de92ec8b097ea34.tar.xz |
Wed Feb 7 20:07:29 UTC 202420240207200729_15.0
patches/packages/expat-2.6.0-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
Fix quadratic runtime issues with big tokens that can cause
denial of service.
Fix billion laughs attacks for users compiling *without* XML_DTD
defined (which is not common).
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-52425
https://www.cve.org/CVERecord?id=CVE-2023-52426
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 506664297..7410554c5 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,15 @@ +Wed Feb 7 20:07:29 UTC 2024 +patches/packages/expat-2.6.0-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + Fix quadratic runtime issues with big tokens that can cause + denial of service. + Fix billion laughs attacks for users compiling *without* XML_DTD + defined (which is not common). + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2023-52425 + https://www.cve.org/CVERecord?id=CVE-2023-52426 + (* Security fix *) ++--------------------------+ Sun Feb 4 19:37:40 UTC 2024 patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txz: Upgraded. Fix the following security issue: |