diff options
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index a1875b6f8..15f9f3c02 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,20 @@ +Wed Nov 9 22:16:30 UTC 2022 +patches/packages/sysstat-12.7.1-x86_64-1_slack15.0.txz: Upgraded. + On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, + allocate_structures contains a size_t overflow in sa_common.c. The + allocate_structures function insufficiently checks bounds before arithmetic + multiplication, allowing for an overflow in the size allocated for the + buffer representing system activities. + This issue may lead to Remote Code Execution (RCE). + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2022-39377 + (* Security fix *) +patches/packages/xfce4-settings-4.16.4-x86_64-1_slack15.0.txz: Upgraded. + Fixed an argument injection vulnerability in xfce4-mime-helper. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2022-45062 + (* Security fix *) ++--------------------------+ Tue Nov 8 22:21:43 UTC 2022 patches/packages/glibc-zoneinfo-2022f-noarch-1_slack15.0.txz: Upgraded. This package provides the latest timezone updates. |