From 40bf9bf864ed33599654671687a082f83ccca943 Mon Sep 17 00:00:00 2001
From: Patrick J Volkerding <volkerdi@slackware.com>
Date: Thu, 23 Jun 2022 05:30:51 +0000
Subject: Thu Jun 23 05:30:51 UTC 2022

patches/packages/ca-certificates-20220622-noarch-1_slack15.0.txz:  Upgraded.
  This update provides the latest CA certificates to check for the
  authenticity of SSL connections.
patches/packages/openssl-1.1.1p-x86_64-1_slack15.0.txz:  Upgraded.
  In addition to the c_rehash shell command injection identified in
  CVE-2022-1292, further circumstances where the c_rehash script does not
  properly sanitise shell metacharacters to prevent command injection were
  found by code review.
  When the CVE-2022-1292 was fixed it was not discovered that there
  are other places in the script where the file names of certificates
  being hashed were possibly passed to a command executed through the shell.
  For more information, see:
    https://www.openssl.org/news/secadv/20220621.txt
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068
  (* Security fix *)
patches/packages/openssl-solibs-1.1.1p-x86_64-1_slack15.0.txz:  Upgraded.
---
 ChangeLog.rss | 30 ++++++++++++++++++++++++++++--
 1 file changed, 28 insertions(+), 2 deletions(-)

(limited to 'ChangeLog.rss')

diff --git a/ChangeLog.rss b/ChangeLog.rss
index 1a656cba4..d2891e670 100644
--- a/ChangeLog.rss
+++ b/ChangeLog.rss
@@ -11,9 +11,35 @@
       <description>Tracking Slackware development in git.</description>
       <language>en-us</language>
       <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id>
-      <pubDate>Mon, 13 Jun 2022 21:02:58 GMT</pubDate>
-      <lastBuildDate>Tue, 14 Jun 2022 11:30:14 GMT</lastBuildDate>
+      <pubDate>Thu, 23 Jun 2022 05:30:51 GMT</pubDate>
+      <lastBuildDate>Thu, 23 Jun 2022 23:29:54 GMT</lastBuildDate>
       <generator>maintain_current_git.sh v 1.17</generator>
+      <item>
+         <title>Thu, 23 Jun 2022 05:30:51 GMT</title>
+         <pubDate>Thu, 23 Jun 2022 05:30:51 GMT</pubDate>
+         <link>https://git.slackware.nl/current/tag/?h=20220623053051</link>
+         <guid isPermaLink="false">20220623053051</guid>
+         <description>
+           <![CDATA[<pre>
+patches/packages/ca-certificates-20220622-noarch-1_slack15.0.txz:  Upgraded.
+  This update provides the latest CA certificates to check for the
+  authenticity of SSL connections.
+patches/packages/openssl-1.1.1p-x86_64-1_slack15.0.txz:  Upgraded.
+  In addition to the c_rehash shell command injection identified in
+  CVE-2022-1292, further circumstances where the c_rehash script does not
+  properly sanitise shell metacharacters to prevent command injection were
+  found by code review.
+  When the CVE-2022-1292 was fixed it was not discovered that there
+  are other places in the script where the file names of certificates
+  being hashed were possibly passed to a command executed through the shell.
+  For more information, see:
+    https://www.openssl.org/news/secadv/20220621.txt
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068
+  (* Security fix *)
+patches/packages/openssl-solibs-1.1.1p-x86_64-1_slack15.0.txz:  Upgraded.
+           </pre>]]>
+         </description>
+      </item>
       <item>
          <title>Mon, 13 Jun 2022 21:02:58 GMT</title>
          <pubDate>Mon, 13 Jun 2022 21:02:58 GMT</pubDate>
-- 
cgit v1.2.3-80-g2a13