From b913726b939032d0a3aa7656f27bb4e022f36104 Mon Sep 17 00:00:00 2001
From: Patrick J Volkerding <volkerdi@slackware.com>
Date: Tue, 25 May 2021 18:01:05 +0000
Subject: Tue May 25 18:01:05 UTC 2021

a/xfsprogs-5.12.0-x86_64-1.txz:  Upgraded.
l/libcap-2.50-x86_64-1.txz:  Upgraded.
l/libqalculate-3.19.0-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.16-x86_64-1.txz:  Upgraded.
  Fixed potential miscalculation of ECDSA/EdDSA code backported from Nettle.
  In GnuTLS, as long as it is built and linked against the fixed version of
  Nettle, this only affects GOST curves.  [CVE-2021-20305]
  Fixed potential use-after-free in sending "key_share" and "pre_shared_key"
  extensions. When sending those extensions, the client may dereference a
  pointer no longer valid after realloc. This happens only when the client
  sends a large Client Hello message, e.g., when HRR is sent in a resumed
  session previously negotiated large FFDHE parameters, because the initial
  allocation of the buffer is large enough without having to call realloc
  (#1151).  [GNUTLS-SA-2021-03-10, CVSS: low]
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20305
  (* Security fix *)
n/libnftnl-1.2.0-x86_64-1.txz:  Upgraded.
n/links-2.23-x86_64-1.txz:  Upgraded.
---
 ChangeLog.rss | 33 +++++++++++++++++++++++++++++++--
 1 file changed, 31 insertions(+), 2 deletions(-)

(limited to 'ChangeLog.rss')

diff --git a/ChangeLog.rss b/ChangeLog.rss
index eea8f2b43..726ceddb8 100644
--- a/ChangeLog.rss
+++ b/ChangeLog.rss
@@ -11,9 +11,38 @@
       <description>Tracking Slackware development in git.</description>
       <language>en-us</language>
       <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id>
-      <pubDate>Sun, 23 May 2021 19:31:03 GMT</pubDate>
-      <lastBuildDate>Mon, 24 May 2021 06:59:46 GMT</lastBuildDate>
+      <pubDate>Tue, 25 May 2021 18:01:05 GMT</pubDate>
+      <lastBuildDate>Wed, 26 May 2021 06:59:44 GMT</lastBuildDate>
       <generator>maintain_current_git.sh v 1.12</generator>
+      <item>
+         <title>Tue, 25 May 2021 18:01:05 GMT</title>
+         <pubDate>Tue, 25 May 2021 18:01:05 GMT</pubDate>
+         <link>https://git.slackware.nl/current/tag/?h=20210525180105</link>
+         <guid isPermaLink="false">20210525180105</guid>
+         <description>
+           <![CDATA[<pre>
+a/xfsprogs-5.12.0-x86_64-1.txz:  Upgraded.
+l/libcap-2.50-x86_64-1.txz:  Upgraded.
+l/libqalculate-3.19.0-x86_64-1.txz:  Upgraded.
+n/gnutls-3.6.16-x86_64-1.txz:  Upgraded.
+  Fixed potential miscalculation of ECDSA/EdDSA code backported from Nettle.
+  In GnuTLS, as long as it is built and linked against the fixed version of
+  Nettle, this only affects GOST curves.  [CVE-2021-20305]
+  Fixed potential use-after-free in sending "key_share" and "pre_shared_key"
+  extensions. When sending those extensions, the client may dereference a
+  pointer no longer valid after realloc. This happens only when the client
+  sends a large Client Hello message, e.g., when HRR is sent in a resumed
+  session previously negotiated large FFDHE parameters, because the initial
+  allocation of the buffer is large enough without having to call realloc
+  (#1151).  [GNUTLS-SA-2021-03-10, CVSS: low]
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20305
+  (* Security fix *)
+n/libnftnl-1.2.0-x86_64-1.txz:  Upgraded.
+n/links-2.23-x86_64-1.txz:  Upgraded.
+           </pre>]]>
+         </description>
+      </item>
       <item>
          <title>Sun, 23 May 2021 19:31:03 GMT</title>
          <pubDate>Sun, 23 May 2021 19:31:03 GMT</pubDate>
-- 
cgit v1.2.3