diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2022-10-05 18:55:36 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2022-10-06 13:30:32 +0200 |
commit | 153ac9bb204e55276263530db56bd39540d15b53 (patch) | |
tree | 7f4d45e376c1f8aed47d1997422b80e118646cad /ChangeLog.txt | |
parent | a96a6a61e41ba076afec827d2733e8f239b99ad4 (diff) | |
download | current-153ac9bb204e55276263530db56bd39540d15b53.tar.gz current-153ac9bb204e55276263530db56bd39540d15b53.tar.xz |
Wed Oct 5 18:55:36 UTC 202220221005185536_15.0
patches/packages/dhcp-4.4.3_P1-x86_64-1_slack15.0.txz: Upgraded.
This update fixes two security issues:
Corrected a reference count leak that occurs when the server builds
responses to leasequery packets.
Corrected a memory leak that occurs when unpacking a packet that has an
FQDN option (81) that contains a label with length greater than 63 bytes.
Thanks to VictorV of Cyber Kunlun Lab for reporting these issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2929
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 6097aa3fe..8c3f64001 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,16 @@ +Wed Oct 5 18:55:36 UTC 2022 +patches/packages/dhcp-4.4.3_P1-x86_64-1_slack15.0.txz: Upgraded. + This update fixes two security issues: + Corrected a reference count leak that occurs when the server builds + responses to leasequery packets. + Corrected a memory leak that occurs when unpacking a packet that has an + FQDN option (81) that contains a label with length greater than 63 bytes. + Thanks to VictorV of Cyber Kunlun Lab for reporting these issues. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2928 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2929 + (* Security fix *) ++--------------------------+ Sat Oct 1 18:38:27 UTC 2022 patches/packages/glibc-zoneinfo-2022d-noarch-1_slack15.0.txz: Upgraded. This package provides the latest timezone updates. |