1 files changed, 28 insertions, 0 deletions

diff --git a/ChangeLog.txt b/ChangeLog.txt
index 9682dae01..748ab7d69 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,31 @@
+Wed Dec 13 22:01:34 UTC 2023
+patches/packages/libxml2-2.12.3-x86_64-1_slack15.0.txz:  Upgraded.
+  This update addresses regressions when building against libxml2 that were
+  due to header file refactoring.
+patches/packages/xorg-server-1.20.14-x86_64-10_slack15.0.txz:  Rebuilt.
+  This update fixes two security issues:
+  Out-of-bounds memory write in XKB button actions.
+  Out-of-bounds memory read in RRChangeOutputProperty and
+  RRChangeProviderProperty.
+  For more information, see:
+    https://lists.x.org/archives/xorg/2023-December/061517.html
+    https://www.cve.org/CVERecord?id=CVE-2023-6377
+    https://www.cve.org/CVERecord?id=CVE-2023-6478
+  (* Security fix *)
+patches/packages/xorg-server-xephyr-1.20.14-x86_64-10_slack15.0.txz:  Rebuilt.
+patches/packages/xorg-server-xnest-1.20.14-x86_64-10_slack15.0.txz:  Rebuilt.
+patches/packages/xorg-server-xvfb-1.20.14-x86_64-10_slack15.0.txz:  Rebuilt.
+patches/packages/xorg-server-xwayland-21.1.4-x86_64-9_slack15.0.txz:  Rebuilt.
+  This update fixes two security issues:
+  Out-of-bounds memory write in XKB button actions.
+  Out-of-bounds memory read in RRChangeOutputProperty and
+  RRChangeProviderProperty.
+  For more information, see:
+    https://lists.x.org/archives/xorg/2023-December/061517.html
+    https://www.cve.org/CVERecord?id=CVE-2023-6377
+    https://www.cve.org/CVERecord?id=CVE-2023-6478
+  (* Security fix *)
++--------------------------+
 Tue Dec 12 19:54:42 UTC 2023
 patches/packages/mozilla-thunderbird-115.5.2-x86_64-1_slack15.0.txz:  Upgraded.
   This is a bugfix release.