1 files changed, 25 insertions, 0 deletions

diff --git a/ChangeLog.txt b/ChangeLog.txt
index 5008106e2..5d21f37c2 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,28 @@
+Tue Sep 20 22:50:28 UTC 2022
+patches/packages/expat-2.4.9-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes a security issue:
+  Heap use-after-free vulnerability in function doContent. Expected impact is
+  denial of service or potentially arbitrary code execution.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40674
+  (* Security fix *)
+patches/packages/mozilla-firefox-102.3.0esr-x86_64-1_slack15.0.txz:  Upgraded.
+  This update contains security fixes and improvements.
+  For more information, see:
+    https://www.mozilla.org/en-US/firefox/102.3.0/releasenotes/
+    https://www.mozilla.org/security/advisories/mfsa2022-41/
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
+  (* Security fix *)
+patches/packages/mozilla-thunderbird-102.3.0-x86_64-1_slack15.0.txz:  Upgraded.
+  This is a bugfix release.
+  For more information, see:
+    https://www.mozilla.org/en-US/thunderbird/102.3.0/releasenotes/
++--------------------------+
 Sun Sep 18 19:02:14 UTC 2022
 patches/packages/vim-9.0.0500-x86_64-1_slack15.0.txz:  Upgraded.
   Fixed heap-based buffer overflow.