From 907d5f4ae7a80cf6b3a0e8cc4977bcd99b346452 Mon Sep 17 00:00:00 2001
From: Patrick J Volkerding <volkerdi@slackware.com>
Date: Wed, 17 May 2023 20:59:51 +0000
Subject: Wed May 17 20:59:51 UTC 2023

patches/packages/curl-8.1.0-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes security issues:
  more POST-after-PUT confusion.
  IDN wildcard match.
  siglongjmp race condition.
  UAF in SSH sha256 fingerprint check.
  For more information, see:
    https://curl.se/docs/CVE-2023-28322.html
    https://curl.se/docs/CVE-2023-28321.html
    https://curl.se/docs/CVE-2023-28320.html
    https://curl.se/docs/CVE-2023-28319.html
    https://www.cve.org/CVERecord?id=CVE-2023-28322
    https://www.cve.org/CVERecord?id=CVE-2023-28321
    https://www.cve.org/CVERecord?id=CVE-2023-28320
    https://www.cve.org/CVERecord?id=CVE-2023-28319
  (* Security fix *)
patches/packages/bind-9.16.41-x86_64-1_slack15.0.txz:  Upgraded.
  This is a bugfix release.
testing/packages/bind-9.18.15-x86_64-1_slack15.0.txz:  Upgraded.
  This is a bugfix release.
---
 ChangeLog.txt | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

(limited to 'ChangeLog.txt')

diff --git a/ChangeLog.txt b/ChangeLog.txt
index 5c9f7988d..27ed9a0fb 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,25 @@
+Wed May 17 20:59:51 UTC 2023
+patches/packages/curl-8.1.0-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes security issues:
+  more POST-after-PUT confusion.
+  IDN wildcard match.
+  siglongjmp race condition.
+  UAF in SSH sha256 fingerprint check.
+  For more information, see:
+    https://curl.se/docs/CVE-2023-28322.html
+    https://curl.se/docs/CVE-2023-28321.html
+    https://curl.se/docs/CVE-2023-28320.html
+    https://curl.se/docs/CVE-2023-28319.html
+    https://www.cve.org/CVERecord?id=CVE-2023-28322
+    https://www.cve.org/CVERecord?id=CVE-2023-28321
+    https://www.cve.org/CVERecord?id=CVE-2023-28320
+    https://www.cve.org/CVERecord?id=CVE-2023-28319
+  (* Security fix *)
+patches/packages/bind-9.16.41-x86_64-1_slack15.0.txz:  Upgraded.
+  This is a bugfix release.
+testing/packages/bind-9.18.15-x86_64-1_slack15.0.txz:  Upgraded.
+  This is a bugfix release.
++--------------------------+
 Sun May 14 17:03:16 UTC 2023
 extra/php80/php80-8.0.28-x86_64-2_slack15.0.txz:  Rebuilt.
   This update removes extension=xmlrpc from the php.ini files.
-- 
cgit v1.2.3-80-g2a13