diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-12-19 21:24:05 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-12-20 13:30:35 +0100 |
commit | 9f08fbd623121f1d7b0f71483a6ced9c2ba6fc32 (patch) | |
tree | c8f1f6e777627afee29a86a01dd2ae64221b4e57 /ChangeLog.txt | |
parent | 2fef18825692a93a07960a800375a0c7377b3348 (diff) | |
download | current-9f08fbd623121f1d7b0f71483a6ced9c2ba6fc32.tar.gz current-9f08fbd623121f1d7b0f71483a6ced9c2ba6fc32.tar.xz |
Tue Dec 19 21:24:05 UTC 202320231219212405_15.0
patches/packages/bluez-5.71-x86_64-2_slack15.0.txz: Rebuilt.
Fix a regression in bluez-5.71:
[PATCH] adapter: Fix link key address type for old kernels.
Thanks to marav.
patches/packages/libssh-0.10.6-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
Command injection using proxycommand.
Potential downgrade attack using strict kex.
Missing checks for return values of MD functions.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-6004
https://www.cve.org/CVERecord?id=CVE-2023-48795
https://www.cve.org/CVERecord?id=CVE-2023-6918
(* Security fix *)
patches/packages/mozilla-firefox-115.6.0esr-x86_64-1_slack15.0.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.6.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2023-54/
https://www.cve.org/CVERecord?id=CVE-2023-6856
https://www.cve.org/CVERecord?id=CVE-2023-6865
https://www.cve.org/CVERecord?id=CVE-2023-6857
https://www.cve.org/CVERecord?id=CVE-2023-6858
https://www.cve.org/CVERecord?id=CVE-2023-6859
https://www.cve.org/CVERecord?id=CVE-2023-6860
https://www.cve.org/CVERecord?id=CVE-2023-6867
https://www.cve.org/CVERecord?id=CVE-2023-6861
https://www.cve.org/CVERecord?id=CVE-2023-6862
https://www.cve.org/CVERecord?id=CVE-2023-6863
https://www.cve.org/CVERecord?id=CVE-2023-6864
(* Security fix *)
patches/packages/mozilla-thunderbird-115.6.0-x86_64-1_slack15.0.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.thunderbird.net/en-US/thunderbird/115.6.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-55/
https://www.cve.org/CVERecord?id=CVE-2023-50762
https://www.cve.org/CVERecord?id=CVE-2023-50761
https://www.cve.org/CVERecord?id=CVE-2023-6856
https://www.cve.org/CVERecord?id=CVE-2023-6857
https://www.cve.org/CVERecord?id=CVE-2023-6858
https://www.cve.org/CVERecord?id=CVE-2023-6859
https://www.cve.org/CVERecord?id=CVE-2023-6860
https://www.cve.org/CVERecord?id=CVE-2023-6861
https://www.cve.org/CVERecord?id=CVE-2023-6862
https://www.cve.org/CVERecord?id=CVE-2023-6863
https://www.cve.org/CVERecord?id=CVE-2023-6864
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 05f8e60ac..759cd7544 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,53 @@ +Tue Dec 19 21:24:05 UTC 2023 +patches/packages/bluez-5.71-x86_64-2_slack15.0.txz: Rebuilt. + Fix a regression in bluez-5.71: + [PATCH] adapter: Fix link key address type for old kernels. + Thanks to marav. +patches/packages/libssh-0.10.6-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + Command injection using proxycommand. + Potential downgrade attack using strict kex. + Missing checks for return values of MD functions. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2023-6004 + https://www.cve.org/CVERecord?id=CVE-2023-48795 + https://www.cve.org/CVERecord?id=CVE-2023-6918 + (* Security fix *) +patches/packages/mozilla-firefox-115.6.0esr-x86_64-1_slack15.0.txz: Upgraded. + This update contains security fixes and improvements. + For more information, see: + https://www.mozilla.org/en-US/firefox/115.6.0/releasenotes/ + https://www.mozilla.org/security/advisories/mfsa2023-54/ + https://www.cve.org/CVERecord?id=CVE-2023-6856 + https://www.cve.org/CVERecord?id=CVE-2023-6865 + https://www.cve.org/CVERecord?id=CVE-2023-6857 + https://www.cve.org/CVERecord?id=CVE-2023-6858 + https://www.cve.org/CVERecord?id=CVE-2023-6859 + https://www.cve.org/CVERecord?id=CVE-2023-6860 + https://www.cve.org/CVERecord?id=CVE-2023-6867 + https://www.cve.org/CVERecord?id=CVE-2023-6861 + https://www.cve.org/CVERecord?id=CVE-2023-6862 + https://www.cve.org/CVERecord?id=CVE-2023-6863 + https://www.cve.org/CVERecord?id=CVE-2023-6864 + (* Security fix *) +patches/packages/mozilla-thunderbird-115.6.0-x86_64-1_slack15.0.txz: Upgraded. + This release contains security fixes and improvements. + For more information, see: + https://www.thunderbird.net/en-US/thunderbird/115.6.0/releasenotes/ + https://www.mozilla.org/en-US/security/advisories/mfsa2023-55/ + https://www.cve.org/CVERecord?id=CVE-2023-50762 + https://www.cve.org/CVERecord?id=CVE-2023-50761 + https://www.cve.org/CVERecord?id=CVE-2023-6856 + https://www.cve.org/CVERecord?id=CVE-2023-6857 + https://www.cve.org/CVERecord?id=CVE-2023-6858 + https://www.cve.org/CVERecord?id=CVE-2023-6859 + https://www.cve.org/CVERecord?id=CVE-2023-6860 + https://www.cve.org/CVERecord?id=CVE-2023-6861 + https://www.cve.org/CVERecord?id=CVE-2023-6862 + https://www.cve.org/CVERecord?id=CVE-2023-6863 + https://www.cve.org/CVERecord?id=CVE-2023-6864 + (* Security fix *) ++--------------------------+ Sat Dec 16 20:33:34 UTC 2023 patches/packages/sudo-1.9.15p4-x86_64-1_slack15.0.txz: Upgraded. This is a bugfix release. |