From 6371ee337f229ef7fd9dc4800b593589def96747 Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Mon, 24 Sep 2018 21:37:09 +0000 Subject: Mon Sep 24 21:37:09 UTC 2018 d/Cython-0.28.5-x86_64-1.txz: Upgraded. d/help2man-1.47.7-x86_64-1.txz: Upgraded. d/meson-0.48.0-x86_64-1.txz: Upgraded. d/python-setuptools-40.4.3-x86_64-1.txz: Upgraded. l/M2Crypto-0.30.1-x86_64-1.txz: Upgraded. l/cairo-1.15.14-x86_64-1.txz: Upgraded. l/librsvg-2.44.4-x86_64-1.txz: Upgraded. l/pycairo-1.17.1-x86_64-1.txz: Upgraded. l/pycurl-7.43.0.2-x86_64-1.txz: Upgraded. l/pyparsing-2.2.1-x86_64-1.txz: Upgraded. n/ModemManager-1.8.2-x86_64-1.txz: Upgraded. n/bind-9.12.2_P2-x86_64-1.txz: Upgraded. This update fixes security issues: There was a long-existing flaw in the documentation for ms-self, krb5-self, ms-subdomain, and krb5-subdomain rules in update-policy statements. Though the policies worked as intended, operators who configured their servers according to the misleading documentation may have thought zone updates were more restricted than they were; users of these rule types are advised to review the documentation and correct their configurations if necessary. New rule types matching the previously documented behavior will be introduced in a future maintenance release. named could crash during recursive processing of DNAME records when deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740 (* Security fix *) n/httpd-2.4.35-x86_64-1.txz: Upgraded. This release fixes bugs and regressions in httpd-2.4.34, adds an apache2ctl -> apachectl symlink, and no longer automatically overwrites rc.httpd when upgraded. --- ChangeLog.txt | 32 ++++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+) (limited to 'ChangeLog.txt') diff --git a/ChangeLog.txt b/ChangeLog.txt index 4e1de8a37..0aad944e9 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,35 @@ +Mon Sep 24 21:37:09 UTC 2018 +d/Cython-0.28.5-x86_64-1.txz: Upgraded. +d/help2man-1.47.7-x86_64-1.txz: Upgraded. +d/meson-0.48.0-x86_64-1.txz: Upgraded. +d/python-setuptools-40.4.3-x86_64-1.txz: Upgraded. +l/M2Crypto-0.30.1-x86_64-1.txz: Upgraded. +l/cairo-1.15.14-x86_64-1.txz: Upgraded. +l/librsvg-2.44.4-x86_64-1.txz: Upgraded. +l/pycairo-1.17.1-x86_64-1.txz: Upgraded. +l/pycurl-7.43.0.2-x86_64-1.txz: Upgraded. +l/pyparsing-2.2.1-x86_64-1.txz: Upgraded. +n/ModemManager-1.8.2-x86_64-1.txz: Upgraded. +n/bind-9.12.2_P2-x86_64-1.txz: Upgraded. + This update fixes security issues: + There was a long-existing flaw in the documentation for ms-self, krb5-self, + ms-subdomain, and krb5-subdomain rules in update-policy statements. Though + the policies worked as intended, operators who configured their servers + according to the misleading documentation may have thought zone updates were + more restricted than they were; users of these rule types are advised to + review the documentation and correct their configurations if necessary. New + rule types matching the previously documented behavior will be introduced in + a future maintenance release. + named could crash during recursive processing of DNAME records when + deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740 + (* Security fix *) +n/httpd-2.4.35-x86_64-1.txz: Upgraded. + This release fixes bugs and regressions in httpd-2.4.34, adds an + apache2ctl -> apachectl symlink, and no longer automatically + overwrites rc.httpd when upgraded. ++--------------------------+ Sat Sep 22 22:41:41 UTC 2018 a/eudev-3.2.6-x86_64-2.txz: Rebuilt. Removed unneeded groups "render" and "kvm" from 50-udev-default.rules. -- cgit v1.2.3-79-gdb01