From cb1ee501cabf242b70244f6035a07307b0bb2f35 Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Wed, 4 Mar 2020 22:03:30 +0000 Subject: Wed Mar 4 22:03:30 UTC 2020 a/sdparm-1.10-x86_64-3.txz: Rebuilt. Recompiled against sg3_utils-1.45. a/udisks-1.0.5-x86_64-5.txz: Rebuilt. Recompiled against sg3_utils-1.45. d/cmake-3.16.5-x86_64-1.txz: Upgraded. l/libgpod-0.8.3-x86_64-6.txz: Rebuilt. Recompiled against sg3_utils-1.45. n/curl-7.69.0-x86_64-1.txz: Upgraded. n/cyrus-sasl-2.1.27-x86_64-3.txz: Rebuilt. Added SQL support via MariaDB. Thanks to niksoggia. n/ntp-4.2.8p14-x86_64-1.txz: Upgraded. n/ppp-2.4.8-x86_64-1.txz: Upgraded. This update fixes a security issue: By sending an unsolicited EAP packet to a vulnerable ppp client or server, an unauthenticated remote attacker could cause memory corruption in the pppd process, which may allow for arbitrary code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597 (* Security fix *) testing/packages/PAM/cyrus-sasl-2.1.27-x86_64-3_pam.txz: Rebuilt. Added SQL support via MariaDB. Thanks to niksoggia. testing/packages/PAM/ppp-2.4.8-x86_64-1_pam.txz: Upgraded. This update fixes a security issue: By sending an unsolicited EAP packet to a vulnerable ppp client or server, an unauthenticated remote attacker could cause memory corruption in the pppd process, which may allow for arbitrary code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597 (* Security fix *) --- ChangeLog.rss | 44 ++++++++++++++++++++++++++++++++++++++++++-- 1 file changed, 42 insertions(+), 2 deletions(-) (limited to 'ChangeLog.rss') diff --git a/ChangeLog.rss b/ChangeLog.rss index 323008ed8..de614dcf9 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,9 +11,48 @@ Tracking Slackware development in git. en-us urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f - Wed, 4 Mar 2020 01:39:54 GMT - Wed, 4 Mar 2020 07:59:25 GMT + Wed, 4 Mar 2020 22:03:30 GMT + Thu, 5 Mar 2020 07:59:42 GMT maintain_current_git.sh v 1.11 + + Wed, 4 Mar 2020 22:03:30 GMT + Wed, 4 Mar 2020 22:03:30 GMT + https://git.slackware.nl/current/tag/?h=20200304220330 + 20200304220330 + + +a/sdparm-1.10-x86_64-3.txz: Rebuilt. + Recompiled against sg3_utils-1.45. +a/udisks-1.0.5-x86_64-5.txz: Rebuilt. + Recompiled against sg3_utils-1.45. +d/cmake-3.16.5-x86_64-1.txz: Upgraded. +l/libgpod-0.8.3-x86_64-6.txz: Rebuilt. + Recompiled against sg3_utils-1.45. +n/curl-7.69.0-x86_64-1.txz: Upgraded. +n/cyrus-sasl-2.1.27-x86_64-3.txz: Rebuilt. + Added SQL support via MariaDB. Thanks to niksoggia. +n/ntp-4.2.8p14-x86_64-1.txz: Upgraded. +n/ppp-2.4.8-x86_64-1.txz: Upgraded. + This update fixes a security issue: + By sending an unsolicited EAP packet to a vulnerable ppp client or server, + an unauthenticated remote attacker could cause memory corruption in the + pppd process, which may allow for arbitrary code execution. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597 + (* Security fix *) +testing/packages/PAM/cyrus-sasl-2.1.27-x86_64-3_pam.txz: Rebuilt. + Added SQL support via MariaDB. Thanks to niksoggia. +testing/packages/PAM/ppp-2.4.8-x86_64-1_pam.txz: Upgraded. + This update fixes a security issue: + By sending an unsolicited EAP packet to a vulnerable ppp client or server, + an unauthenticated remote attacker could cause memory corruption in the + pppd process, which may allow for arbitrary code execution. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597 + (* Security fix *) + ]]> + + Wed, 4 Mar 2020 01:39:54 GMT Wed, 4 Mar 2020 01:39:54 GMT @@ -42,6 +81,7 @@ d/vala-0.48.0-x86_64-1.txz: Upgraded. l/at-spi2-atk-2.34.2-x86_64-1.txz: Upgraded. l/fribidi-1.0.9-x86_64-1.txz: Upgraded. l/sg3_utils-1.45-x86_64-1.txz: Upgraded. + Shared library .so-version bump. n/samba-4.12.0-x86_64-1.txz: Upgraded. testing/packages/PAM/samba-4.12.0-x86_64-1_pam.txz: Upgraded. ]]> -- cgit v1.2.3