diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2024-03-07 20:40:08 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2024-03-08 13:30:42 +0100 |
commit | 9f285815b938707157a3cfd605280829c1d5a715 (patch) | |
tree | 7015e6091ab6ba13dbb212533ddfccb0f70132b9 /ChangeLog.txt | |
parent | f4d1d3ac7dbefd94aa50dd4aa2fcd330a8e2b762 (diff) | |
download | current-9f285815b938707157a3cfd605280829c1d5a715.tar.gz current-9f285815b938707157a3cfd605280829c1d5a715.tar.xz |
Thu Mar 7 20:40:08 UTC 202420240307204008_15.0
patches/packages/ghostscript-9.55.0-x86_64-2_slack15.0.txz: Rebuilt.
Fixes security issues:
A vulnerability was identified in the way Ghostscript/GhostPDL called
tesseract for the OCR devices, which could allow arbitrary code execution.
Thanks to J_W for the heads-up.
Mishandling of permission validation for pipe devices could allow arbitrary
code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36664
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 9247152f5..d85bac921 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,15 @@ +Thu Mar 7 20:40:08 UTC 2024 +patches/packages/ghostscript-9.55.0-x86_64-2_slack15.0.txz: Rebuilt. + Fixes security issues: + A vulnerability was identified in the way Ghostscript/GhostPDL called + tesseract for the OCR devices, which could allow arbitrary code execution. + Thanks to J_W for the heads-up. + Mishandling of permission validation for pipe devices could allow arbitrary + code execution. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36664 + (* Security fix *) ++--------------------------+ Tue Mar 5 21:16:50 UTC 2024 patches/packages/mozilla-thunderbird-115.8.1-x86_64-1_slack15.0.txz: Upgraded. This release contains security fixes and improvements. |