| * | Wed Apr 17 20:27:23 UTC 2019...a/kernel-generic-4.19.35-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.35-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.35-x86_64-1.txz: Upgraded.
ap/sqlite-3.28.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.35-x86-1.txz: Upgraded.
d/meson-0.50.1-x86_64-1.txz: Upgraded.
d/ruby-2.6.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.35-noarch-1.txz: Upgraded.
l/Mako-1.0.9-x86_64-1.txz: Upgraded.
l/libcap-2.27-x86_64-1.txz: Upgraded.
l/libpng-1.6.37-x86_64-1.txz: Upgraded.
This update fixes security issues:
Fixed a use-after-free vulnerability (CVE-2019-7317) in png_image_free.
Fixed a memory leak in the ARM NEON implementation of png_do_expand_palette.
Fixed a memory leak in pngtest.c.
Fixed two vulnerabilities (CVE-2018-14048, CVE-2018-14550) in
contrib/pngminus; refactor.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14048
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317
(* Security fix *)
l/libpsl-0.21.0-x86_64-1.txz: Upgraded.
l/pcre2-10.33-x86_64-1.txz: Upgraded.
l/pyparsing-2.4.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20190417202723 |   Patrick J Volkerding | 2019-04-18 | 1 | -0/+8321 |
Patrick J Volkerding