Mon Sep 24 21:37:09 UTC 201820180924213709

d/Cython-0.28.5-x86_64-1.txz:  Upgraded.
d/help2man-1.47.7-x86_64-1.txz:  Upgraded.
d/meson-0.48.0-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.4.3-x86_64-1.txz:  Upgraded.
l/M2Crypto-0.30.1-x86_64-1.txz:  Upgraded.
l/cairo-1.15.14-x86_64-1.txz:  Upgraded.
l/librsvg-2.44.4-x86_64-1.txz:  Upgraded.
l/pycairo-1.17.1-x86_64-1.txz:  Upgraded.
l/pycurl-7.43.0.2-x86_64-1.txz:  Upgraded.
l/pyparsing-2.2.1-x86_64-1.txz:  Upgraded.
n/ModemManager-1.8.2-x86_64-1.txz:  Upgraded.
n/bind-9.12.2_P2-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  There was a long-existing flaw in the documentation for ms-self, krb5-self,
  ms-subdomain, and krb5-subdomain rules in update-policy statements. Though
  the policies worked as intended, operators who configured their servers
  according to the misleading documentation may have thought zone updates were
  more restricted than they were; users of these rule types are advised to
  review the documentation and correct their configurations if necessary. New
  rule types matching the previously documented behavior will be introduced in
  a future maintenance release.
  named could crash during recursive processing of DNAME records when
  deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
  (* Security fix *)
n/httpd-2.4.35-x86_64-1.txz:  Upgraded.
  This release fixes bugs and regressions in httpd-2.4.34, adds an
  apache2ctl -> apachectl symlink, and no longer automatically
  overwrites rc.httpd when upgraded.

1 files changed, 32 insertions, 0 deletions

diff --git a/ChangeLog.txt b/ChangeLog.txt
index 4e1de8a37..0aad944e9 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,35 @@
+Mon Sep 24 21:37:09 UTC 2018
+d/Cython-0.28.5-x86_64-1.txz:  Upgraded.
+d/help2man-1.47.7-x86_64-1.txz:  Upgraded.
+d/meson-0.48.0-x86_64-1.txz:  Upgraded.
+d/python-setuptools-40.4.3-x86_64-1.txz:  Upgraded.
+l/M2Crypto-0.30.1-x86_64-1.txz:  Upgraded.
+l/cairo-1.15.14-x86_64-1.txz:  Upgraded.
+l/librsvg-2.44.4-x86_64-1.txz:  Upgraded.
+l/pycairo-1.17.1-x86_64-1.txz:  Upgraded.
+l/pycurl-7.43.0.2-x86_64-1.txz:  Upgraded.
+l/pyparsing-2.2.1-x86_64-1.txz:  Upgraded.
+n/ModemManager-1.8.2-x86_64-1.txz:  Upgraded.
+n/bind-9.12.2_P2-x86_64-1.txz:  Upgraded.
+  This update fixes security issues:
+  There was a long-existing flaw in the documentation for ms-self, krb5-self,
+  ms-subdomain, and krb5-subdomain rules in update-policy statements. Though
+  the policies worked as intended, operators who configured their servers
+  according to the misleading documentation may have thought zone updates were
+  more restricted than they were; users of these rule types are advised to
+  review the documentation and correct their configurations if necessary. New
+  rule types matching the previously documented behavior will be introduced in
+  a future maintenance release.
+  named could crash during recursive processing of DNAME records when
+  deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
+  (* Security fix *)
+n/httpd-2.4.35-x86_64-1.txz:  Upgraded.
+  This release fixes bugs and regressions in httpd-2.4.34, adds an
+  apache2ctl -> apachectl symlink, and no longer automatically
+  overwrites rc.httpd when upgraded.
++--------------------------+
 Sat Sep 22 22:41:41 UTC 2018
 a/eudev-3.2.6-x86_64-2.txz:  Rebuilt.
   Removed unneeded groups "render" and "kvm" from 50-udev-default.rules.