Wed Feb 14 04:31:08 UTC 202420240214043108

l/exiv2-0.28.2-x86_64-1.txz:  Upgraded.
  Fixes two low-severity security issues introduced in 0.28.x:
  Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder.
  Denial of service due to unbounded recursion in
  QuickTimeVideo::multipleEntriesDecoder.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2024-24826
    https://www.cve.org/CVERecord?id=CVE-2024-25112
  (* Security fix *)
l/gnome-keyring-46.1-x86_64-1.txz:  Upgraded.
n/dnsmasq-2.90-x86_64-1.txz:  Upgraded.
  Add limits on the resources used to do DNSSEC validation.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-50387
    https://www.cve.org/CVERecord?id=CVE-2023-50868
  (* Security fix *)
x/igt-gpu-tools-1.28-x86_64-2.txz:  Rebuilt.
  Recompiled against /procps-ng-4.0.4.

1 files changed, 20 insertions, 0 deletions

diff --git a/ChangeLog.txt b/ChangeLog.txt
index f840c8b76..3c012b819 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,23 @@
+Wed Feb 14 04:31:08 UTC 2024
+l/exiv2-0.28.2-x86_64-1.txz:  Upgraded.
+  Fixes two low-severity security issues introduced in 0.28.x:
+  Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder.
+  Denial of service due to unbounded recursion in
+  QuickTimeVideo::multipleEntriesDecoder.
+  For more information, see:
+    https://www.cve.org/CVERecord?id=CVE-2024-24826
+    https://www.cve.org/CVERecord?id=CVE-2024-25112
+  (* Security fix *)
+l/gnome-keyring-46.1-x86_64-1.txz:  Upgraded.
+n/dnsmasq-2.90-x86_64-1.txz:  Upgraded.
+  Add limits on the resources used to do DNSSEC validation.
+  For more information, see:
+    https://www.cve.org/CVERecord?id=CVE-2023-50387
+    https://www.cve.org/CVERecord?id=CVE-2023-50868
+  (* Security fix *)
+x/igt-gpu-tools-1.28-x86_64-2.txz:  Rebuilt.
+  Recompiled against /procps-ng-4.0.4.
++--------------------------+
 Tue Feb 13 19:19:24 UTC 2024
 ap/tmux-3.4-x86_64-1.txz:  Upgraded.
 d/lua-5.4.6-x86_64-5.txz:  Rebuilt.