diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2023-10-03 22:19:10 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2023-10-04 13:30:38 +0200 |
| commit | 2e4c4aae3633c4ddb6a1ef778187452de22371d7 (patch) | |
| tree | 4e29072ddc080e5eac2a6c6391d930bfef11f1e8 /ChangeLog.txt | |
| parent | fa0445dbfed2e9a95ee4b95281982d034402316e (diff) | |
| download | current-2e4c4aae3633c4ddb6a1ef778187452de22371d7.tar.gz current-2e4c4aae3633c4ddb6a1ef778187452de22371d7.tar.xz | |
Tue Oct 3 22:19:10 UTC 202320231003221910_15.0
patches/packages/libX11-1.8.7-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
libX11: out-of-bounds memory access in _XkbReadKeySyms().
libX11: stack exhaustion from infinite recursion in PutSubImage().
libX11: integer overflow in XCreateImage() leading to a heap overflow.
For more information, see:
https://lists.x.org/archives/xorg-announce/2023-October/003424.html
https://www.cve.org/CVERecord?id=CVE-2023-43785
https://www.cve.org/CVERecord?id=CVE-2023-43786
https://www.cve.org/CVERecord?id=CVE-2023-43787
(* Security fix *)
patches/packages/libXpm-3.5.17-x86_64-1_slack15.0.txz: Upgraded.
This update fixes security issues:
libXpm: out of bounds read in XpmCreateXpmImageFromBuffer().
libXpm: out of bounds read on XPM with corrupted colormap.
For more information, see:
https://lists.x.org/archives/xorg-announce/2023-October/003424.html
https://www.cve.org/CVERecord?id=CVE-2023-43788
https://www.cve.org/CVERecord?id=CVE-2023-43789
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 19492cee5..548ca668d 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,25 @@ +Tue Oct 3 22:19:10 UTC 2023 +patches/packages/libX11-1.8.7-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + libX11: out-of-bounds memory access in _XkbReadKeySyms(). + libX11: stack exhaustion from infinite recursion in PutSubImage(). + libX11: integer overflow in XCreateImage() leading to a heap overflow. + For more information, see: + https://lists.x.org/archives/xorg-announce/2023-October/003424.html + https://www.cve.org/CVERecord?id=CVE-2023-43785 + https://www.cve.org/CVERecord?id=CVE-2023-43786 + https://www.cve.org/CVERecord?id=CVE-2023-43787 + (* Security fix *) +patches/packages/libXpm-3.5.17-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + libXpm: out of bounds read in XpmCreateXpmImageFromBuffer(). + libXpm: out of bounds read on XPM with corrupted colormap. + For more information, see: + https://lists.x.org/archives/xorg-announce/2023-October/003424.html + https://www.cve.org/CVERecord?id=CVE-2023-43788 + https://www.cve.org/CVERecord?id=CVE-2023-43789 + (* Security fix *) ++--------------------------+ Sat Sep 30 21:33:49 UTC 2023 patches/packages/libvpx-1.12.0-x86_64-1_slack15.0.txz: Upgraded. This release contains two security related fixes -- one each for VP8 and VP9. |