From fb4e47bf7839f6e2552e0e22ab9b891af79e26a9 Mon Sep 17 00:00:00 2001
From: Patrick J Volkerding <volkerdi@slackware.com>
Date: Wed, 24 Feb 2021 20:34:08 +0000
Subject: Wed Feb 24 20:34:08 UTC 2021

ap/nano-5.6-x86_64-1.txz:  Upgraded.
ap/qpdf-10.2.0-x86_64-1.txz:  Upgraded.
d/cmake-3.19.6-x86_64-1.txz:  Upgraded.
kde/bluedevil-5.21.1-x86_64-1.txz:  Upgraded.
kde/breeze-5.21.1-x86_64-1.txz:  Upgraded.
kde/breeze-grub-5.21.1-x86_64-1.txz:  Upgraded.
kde/breeze-gtk-5.21.1-x86_64-1.txz:  Upgraded.
kde/drkonqi-5.21.1-x86_64-1.txz:  Upgraded.
kde/kactivitymanagerd-5.21.1-x86_64-1.txz:  Upgraded.
kde/kde-cli-tools-5.21.1-x86_64-1.txz:  Upgraded.
kde/kde-gtk-config-5.21.1-x86_64-1.txz:  Upgraded.
kde/kdecoration-5.21.1-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-5.21.1-x86_64-1.txz:  Upgraded.
kde/kgamma5-5.21.1-x86_64-1.txz:  Upgraded.
kde/khotkeys-5.21.1-x86_64-1.txz:  Upgraded.
kde/kinfocenter-5.21.1-x86_64-1.txz:  Upgraded.
kde/kmenuedit-5.21.1-x86_64-1.txz:  Upgraded.
kde/kscreen-5.21.1-x86_64-1.txz:  Upgraded.
kde/kscreenlocker-5.21.1-x86_64-1.txz:  Upgraded.
kde/ksshaskpass-5.21.1-x86_64-1.txz:  Upgraded.
kde/ksysguard-5.21.1-x86_64-1.txz:  Upgraded.
kde/kwallet-pam-5.21.1-x86_64-1.txz:  Upgraded.
kde/kwayland-integration-5.21.1-x86_64-1.txz:  Upgraded.
kde/kwayland-server-5.21.1-x86_64-1.txz:  Upgraded.
kde/kwin-5.21.1-x86_64-1.txz:  Upgraded.
kde/kwrited-5.21.1-x86_64-1.txz:  Upgraded.
kde/libkscreen-5.21.1-x86_64-1.txz:  Upgraded.
kde/libksysguard-5.21.1-x86_64-1.txz:  Upgraded.
kde/milou-5.21.1-x86_64-1.txz:  Upgraded.
kde/oxygen-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-browser-integration-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-desktop-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-disks-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-firewall-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-integration-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-nm-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-pa-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-sdk-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-systemmonitor-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-vault-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-5.21.1-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-wallpapers-5.21.1-x86_64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-5.21.1-x86_64-1.txz:  Upgraded.
kde/powerdevil-5.21.1-x86_64-1.txz:  Upgraded.
kde/qqc2-breeze-style-5.21.1-x86_64-1.txz:  Upgraded.
kde/sddm-kcm-5.21.1-x86_64-1.txz:  Upgraded.
kde/systemsettings-5.21.1-x86_64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-5.21.1-x86_64-1.txz:  Upgraded.
n/bind-9.16.11-x86_64-3.txz:  Rebuilt.
  Reverted to bind-9.16.11 plus a patch for CVE-2020-8625 to fix a
  regression in bind-9.16.12 that can cause the name server to crash.
  Thanks to nobodino.
n/openvpn-2.5.1-x86_64-1.txz:  Upgraded.
n/s-nail-14.9.22-x86_64-1.txz:  Upgraded.
x/libinput-1.16.5-x86_64-1.txz:  Upgraded.
x/libwacom-1.9-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-78.8.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/78.8.0/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2021-09/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23969
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23968
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23973
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23978
  (* Security fix *)
---
 source/n/bind/bind-9.16.11.CVE-2020-8625.diff | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 source/n/bind/bind-9.16.11.CVE-2020-8625.diff

(limited to 'source/n/bind/bind-9.16.11.CVE-2020-8625.diff')

diff --git a/source/n/bind/bind-9.16.11.CVE-2020-8625.diff b/source/n/bind/bind-9.16.11.CVE-2020-8625.diff
new file mode 100644
index 000000000..419b5bea0
--- /dev/null
+++ b/source/n/bind/bind-9.16.11.CVE-2020-8625.diff
@@ -0,0 +1,12 @@
+diff -u -r --new-file bind-9.16.11.orig/lib/dns/spnego.c bind-9.16.11/lib/dns/spnego.c
+--- bind-9.16.11.orig/lib/dns/spnego.c	2021-01-11 07:23:31.000000000 -0600
++++ bind-9.16.11/lib/dns/spnego.c	2021-02-24 13:57:17.199873321 -0600
+@@ -848,7 +848,7 @@
+ 		return (ASN1_OVERRUN);
+ 	}
+ 
+-	data->components = malloc(len * sizeof(*data->components));
++	data->components = malloc((len + 1) * sizeof(*data->components));
+ 	if (data->components == NULL) {
+ 		return (ENOMEM);
+ 	}
-- 
cgit v1.2.3