diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2022-04-14 21:14:21 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2022-04-15 06:59:45 +0200 |
| commit | 2be63df823370dd01af02b4720eb680c5eda13ad (patch) | |
| tree | 621b04f5cb8f3fcfd2367c04495a67e6029466a1 /ChangeLog.txt | |
| parent | e4db68e72f65f509a9f1a9432441c17d14245a8c (diff) | |
| download | current-2be63df823370dd01af02b4720eb680c5eda13ad.tar.gz current-2be63df823370dd01af02b4720eb680c5eda13ad.tar.xz | |
Thu Apr 14 21:14:21 UTC 202220220414211421
a/kernel-firmware-20220413_8a2d811-noarch-1.txz: Upgraded.
a/sysvinit-3.03-x86_64-1.txz: Upgraded.
a/xz-5.2.5-x86_64-4.txz: Rebuilt.
This update fixes a security issue:
xzgrep applied to a crafted file name with two or more newlines can no
longer overwrite an arbitrary, attacker-selected file.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1271
(* Security fix *)
d/git-2.35.3-x86_64-1.txz: Upgraded.
This update fixes a security issue where a Git worktree created by another
user might be able to execute arbitrary code.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24765
(* Security fix *)
l/libaio-0.3.113-x86_64-1.txz: Upgraded.
l/tevent-0.12.0-x86_64-1.txz: Upgraded.
n/php-7.4.29-x86_64-1.txz: Upgraded.
extra/php81/php81-8.1.5-x86_64-1.txz: Upgraded.
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index ee6f10909..ee0def573 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,24 @@ +Thu Apr 14 21:14:21 UTC 2022 +a/kernel-firmware-20220413_8a2d811-noarch-1.txz: Upgraded. +a/sysvinit-3.03-x86_64-1.txz: Upgraded. +a/xz-5.2.5-x86_64-4.txz: Rebuilt. + This update fixes a security issue: + xzgrep applied to a crafted file name with two or more newlines can no + longer overwrite an arbitrary, attacker-selected file. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1271 + (* Security fix *) +d/git-2.35.3-x86_64-1.txz: Upgraded. + This update fixes a security issue where a Git worktree created by another + user might be able to execute arbitrary code. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24765 + (* Security fix *) +l/libaio-0.3.113-x86_64-1.txz: Upgraded. +l/tevent-0.12.0-x86_64-1.txz: Upgraded. +n/php-7.4.29-x86_64-1.txz: Upgraded. +extra/php81/php81-8.1.5-x86_64-1.txz: Upgraded. ++--------------------------+ Wed Apr 13 20:51:01 UTC 2022 a/kernel-generic-5.17.3-x86_64-1.txz: Upgraded. a/kernel-huge-5.17.3-x86_64-1.txz: Upgraded. |