summaryrefslogtreecommitdiffstats
path: root/ChangeLog.rss
diff options
context:
space:
mode:
Diffstat (limited to 'ChangeLog.rss')
-rw-r--r--ChangeLog.rss28
1 files changed, 26 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss
index 50f4aa666..8f1a7fd43 100644
--- a/ChangeLog.rss
+++ b/ChangeLog.rss
@@ -11,10 +11,34 @@
<description>Tracking Slackware development in git.</description>
<language>en-us</language>
<id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id>
- <pubDate>Sat, 19 Jun 2021 19:12:24 GMT</pubDate>
- <lastBuildDate>Sun, 20 Jun 2021 06:59:44 GMT</lastBuildDate>
+ <pubDate>Mon, 21 Jun 2021 18:26:35 GMT</pubDate>
+ <lastBuildDate>Tue, 22 Jun 2021 06:59:44 GMT</lastBuildDate>
<generator>maintain_current_git.sh v 1.12</generator>
<item>
+ <title>Mon, 21 Jun 2021 18:26:35 GMT</title>
+ <pubDate>Mon, 21 Jun 2021 18:26:35 GMT</pubDate>
+ <link>https://git.slackware.nl/current/tag/?h=20210621182635</link>
+ <guid isPermaLink="false">20210621182635</guid>
+ <description>
+ <![CDATA[<pre>
+kde/kid3-3.8.7-x86_64-1.txz: Upgraded.
+l/openexr-2.5.7-x86_64-1.txz: Upgraded.
+n/dovecot-2.3.15-x86_64-1.txz: Upgraded.
+ This update fixes security issues:
+ Dovecot did not correctly escape kid and azp fields in JWT tokens. This may
+ be used to supply attacker controlled keys to validate tokens, if attacker
+ has local access.
+ On-path attacker could have injected plaintext commands before STARTTLS
+ negotiation that would be executed after STARTTLS finished with the client.
+ For more information, see:
+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29157
+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33515
+ (* Security fix *)
+x/libva-2.12.0-x86_64-1.txz: Upgraded.
+ </pre>]]>
+ </description>
+ </item>
+ <item>
<title>Sat, 19 Jun 2021 19:12:24 GMT</title>
<pubDate>Sat, 19 Jun 2021 19:12:24 GMT</pubDate>
<link>https://git.slackware.nl/current/tag/?h=20210619191224</link>