diff options
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 047d74246..33ab0abcb 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,18 @@ +Mon Feb 21 20:21:38 UTC 2022 +patches/packages/expat-2.4.6-x86_64-1_slack15.0.txz: Upgraded. + Fixed a regression introduced by the fix for CVE-2022-25313 that affects + applications that (1) call function XML_SetElementDeclHandler and (2) are + parsing XML that contains nested element declarations: + (e.g. "<!ELEMENT junk ((bar|foo|xyz+), zebra*)>"). +patches/packages/flac-1.3.4-x86_64-1_slack15.0.txz: Upgraded. + This update fixes overflow issues with encoding and decoding. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0499 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0561 + (* Security fix *) +patches/packages/mariadb-10.5.15-x86_64-2_slack15.0.txz: Rebuilt. + Removed dangling symlink. ++--------------------------+ Sun Feb 20 05:13:20 UTC 2022 patches/packages/expat-2.4.5-x86_64-1_slack15.0.txz: Upgraded. Fixed security issues that could lead to denial of service or potentially |