diff options
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 33 |
1 files changed, 33 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 87197cf7c..76d343bdd 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,36 @@ +Tue Feb 7 20:48:57 UTC 2023 +patches/packages/openssl-1.1.1t-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + X.400 address type confusion in X.509 GeneralName. + Timing Oracle in RSA Decryption. + Use-after-free following BIO_new_NDEF. + Double free after calling PEM_read_bio_ex. + For more information, see: + https://www.openssl.org/news/secadv/20230207.txt + https://www.cve.org/CVERecord?id=CVE-2023-0286 + https://www.cve.org/CVERecord?id=CVE-2022-4304 + https://www.cve.org/CVERecord?id=CVE-2023-0215 + https://www.cve.org/CVERecord?id=CVE-2022-4450 + (* Security fix *) +patches/packages/openssl-solibs-1.1.1t-x86_64-1_slack15.0.txz: Upgraded. +patches/packages/xorg-server-1.20.14-x86_64-7_slack15.0.txz: Rebuilt. + [PATCH] Xi: fix potential use-after-free in DeepCopyPointerClasses. + Also merged another patch to prevent crashes when using a compositor with + the NVIDIA blob. Thanks to mdinslage, willysr, and Daedra. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2023-0494 + (* Security fix *) +patches/packages/xorg-server-xephyr-1.20.14-x86_64-7_slack15.0.txz: Rebuilt. +patches/packages/xorg-server-xnest-1.20.14-x86_64-7_slack15.0.txz: Rebuilt. +patches/packages/xorg-server-xvfb-1.20.14-x86_64-7_slack15.0.txz: Rebuilt. +patches/packages/xorg-server-xwayland-21.1.4-x86_64-6_slack15.0.txz: Rebuilt. + [PATCH] Xi: fix potential use-after-free in DeepCopyPointerClasses. + Also merged another patch to prevent crashes when using a compositor with + the NVIDIA blob. Thanks to mdinslage, willysr, and Daedra. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2023-0494 + (* Security fix *) ++--------------------------+ Thu Feb 2 22:52:48 UTC 2023 patches/packages/openssh-9.2p1-x86_64-1_slack15.0.txz: Upgraded. This release contains fixes for two security problems and a memory safety |