diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-09-14 02:38:14 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-09-14 05:06:53 +0200 |
commit | 8daddd6079dea98d321586cf3e4b1e772a384bed (patch) | |
tree | d617cd5c18d17579f21b9a61e0006fd0d9a2c6c7 /ChangeLog.rss | |
parent | d3d716b8ff72205dcbce1cffa2cd2b8e49262e5c (diff) | |
download | current-8daddd6079dea98d321586cf3e4b1e772a384bed.tar.gz current-8daddd6079dea98d321586cf3e4b1e772a384bed.tar.xz |
Thu Sep 14 02:38:14 UTC 202320230914023814
a/kernel-firmware-20230907_dfa1146-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.53-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.53-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.53-x86_64-1.txz: Upgraded.
ap/ghostscript-10.02.0-x86_64-1.txz: Upgraded.
ap/vim-9.0.1897-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
d/cbindgen-0.26.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.53-x86-1.txz: Upgraded.
k/kernel-source-6.1.53-noarch-1.txz: Upgraded.
kde/keysmith-23.08.0-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
l/glib2-2.78.0-x86_64-2.txz: Rebuilt.
[PATCH] gthreadedresolver: Fix race between source callbacks and finalize.
Thanks to marav.
l/libarchive-3.7.2-x86_64-1.txz: Upgraded.
This update fixes multiple security vulnerabilities in the PAX writer:
Heap overflow in url_encode() in archive_write_set_format_pax.c.
NULL dereference in archive_write_pax_header_xattrs().
Another NULL dereference in archive_write_pax_header_xattrs().
NULL dereference in archive_write_pax_header_xattr().
(* Security fix *)
l/librsvg-2.56.4-x86_64-1.txz: Upgraded.
l/libsodium-1.0.19-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-8.3.0-x86_64-1.txz: Upgraded.
This update fixes a security issue:
HTTP headers eat all memory.
https://curl.se/docs/CVE-2023-38039.html
https://www.cve.org/CVERecord?id=CVE-2023-38039
(* Security fix *)
n/dovecot-2.3.20-x86_64-4.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
n/netatalk-3.1.16-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
Shared library .so-version bump.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-23121
https://www.cve.org/CVERecord?id=CVE-2022-23123
(* Security fix *)
n/openldap-2.6.6-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
n/php-8.2.10-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
n/proftpd-1.3.8-x86_64-4.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
x/libglvnd-1.7.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-115.2.2-x86_64-1.txz: Upgraded.
This release contains a security fix for a critical heap buffer overflow.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.2.2/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/
https://www.cve.org/CVERecord?id=CVE-2023-4863
(* Security fix *)
xap/vim-gvim-9.0.1897-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Diffstat (limited to 'ChangeLog.rss')
-rw-r--r-- | ChangeLog.rss | 73 |
1 files changed, 71 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss index 4bc4aa390..66360489a 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,10 +11,79 @@ <description>Tracking Slackware development in git.</description> <language>en-us</language> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> - <pubDate>Wed, 13 Sep 2023 01:32:01 GMT</pubDate> - <lastBuildDate>Wed, 13 Sep 2023 02:11:19 GMT</lastBuildDate> + <pubDate>Thu, 14 Sep 2023 02:38:14 GMT</pubDate> + <lastBuildDate>Thu, 14 Sep 2023 03:06:48 GMT</lastBuildDate> <generator>maintain_current_git.sh v 1.17</generator> <item> + <title>Thu, 14 Sep 2023 02:38:14 GMT</title> + <pubDate>Thu, 14 Sep 2023 02:38:14 GMT</pubDate> + <link>https://git.slackware.nl/current/tag/?h=20230914023814</link> + <guid isPermaLink="false">20230914023814</guid> + <description> + <![CDATA[<pre> +a/kernel-firmware-20230907_dfa1146-noarch-1.txz: Upgraded. +a/kernel-generic-6.1.53-x86_64-1.txz: Upgraded. +a/kernel-huge-6.1.53-x86_64-1.txz: Upgraded. +a/kernel-modules-6.1.53-x86_64-1.txz: Upgraded. +ap/ghostscript-10.02.0-x86_64-1.txz: Upgraded. +ap/vim-9.0.1897-x86_64-2.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +d/cbindgen-0.26.0-x86_64-1.txz: Upgraded. +d/kernel-headers-6.1.53-x86-1.txz: Upgraded. +k/kernel-source-6.1.53-noarch-1.txz: Upgraded. +kde/keysmith-23.08.0-x86_64-2.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +l/glib2-2.78.0-x86_64-2.txz: Rebuilt. + [PATCH] gthreadedresolver: Fix race between source callbacks and finalize. + Thanks to marav. +l/libarchive-3.7.2-x86_64-1.txz: Upgraded. + This update fixes multiple security vulnerabilities in the PAX writer: + Heap overflow in url_encode() in archive_write_set_format_pax.c. + NULL dereference in archive_write_pax_header_xattrs(). + Another NULL dereference in archive_write_pax_header_xattrs(). + NULL dereference in archive_write_pax_header_xattr(). + (* Security fix *) +l/librsvg-2.56.4-x86_64-1.txz: Upgraded. +l/libsodium-1.0.19-x86_64-1.txz: Upgraded. + Shared library .so-version bump. +n/curl-8.3.0-x86_64-1.txz: Upgraded. + This update fixes a security issue: + HTTP headers eat all memory. + https://curl.se/docs/CVE-2023-38039.html + https://www.cve.org/CVERecord?id=CVE-2023-38039 + (* Security fix *) +n/dovecot-2.3.20-x86_64-4.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +n/netatalk-3.1.16-x86_64-1.txz: Upgraded. + This update fixes bugs and security issues. + Shared library .so-version bump. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2022-23121 + https://www.cve.org/CVERecord?id=CVE-2022-23123 + (* Security fix *) +n/openldap-2.6.6-x86_64-2.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +n/php-8.2.10-x86_64-2.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +n/proftpd-1.3.8-x86_64-4.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +x/libglvnd-1.7.0-x86_64-1.txz: Upgraded. +xap/mozilla-thunderbird-115.2.2-x86_64-1.txz: Upgraded. + This release contains a security fix for a critical heap buffer overflow. + For more information, see: + https://www.mozilla.org/en-US/thunderbird/115.2.2/releasenotes/ + https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/ + https://www.cve.org/CVERecord?id=CVE-2023-4863 + (* Security fix *) +xap/vim-gvim-9.0.1897-x86_64-2.txz: Rebuilt. + Recompiled against libsodium-1.0.19. +isolinux/initrd.img: Rebuilt. +kernels/*: Upgraded. +usb-and-pxe-installers/usbboot.img: Rebuilt. + </pre>]]> + </description> + </item> + <item> <title>Wed, 13 Sep 2023 01:32:01 GMT</title> <pubDate>Wed, 13 Sep 2023 01:32:01 GMT</pubDate> <link>https://git.slackware.nl/current/tag/?h=20230913013201</link> |