New zlib packages are available for Slackware 14.0, 14.1, 14.2, 15.0,
and -current to fix a security issue.
Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/zlib-1.2.13-i586-1_slack15.0.txz: Upgraded.
Fixed a bug when getting a gzip header extra field with inflateGetHeader().
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434
(* Security fix *)
+--------------------------+
[slackware-security] python3 (SSA:2022-286-01)
New python3 packages are available for Slackware 15.0 and -current to
fix security issues.
Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/python3-3.9.15-i586-1_slack15.0.txz: Upgraded.
This update fixes security issues:
Bundled libexpat was upgraded from 2.4.7 to 2.4.9 which fixes a heap
use-after-free vulnerability in function doContent.
gh-97616: a fix for a possible buffer overflow in list *= int.
gh-97612: a fix for possible shell injection in the example script
get-remote-certificate.py.
gh-96577: a fix for a potential buffer overrun in msilib.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40674
(* Security fix *)
+--------------------------+
[slackware-security] libksba (SSA:2022-281-01)
New libksba packages are available for Slackware 14.2, 15.0, and -current to
fix a security issue.
Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/libksba-1.6.2-i586-1_slack15.0.txz: Upgraded.
Detect a possible overflow directly in the TLV parser.
This patch detects possible integer overflows immmediately when creating
the TI object.
Reported-by: ZDI-CAN-18927, ZDI-CAN-18928, ZDI-CAN-18929
(* Security fix *)
+--------------------------+
Som tidigare, endast 64-bit version.
SlackBuild för 15.0
SlackBuild för current
(OBS! Detta är Ponce repo, inte SlackBuilds.org - Vill man använda SBO's SlackBuild för current, så finner du den här)
Glöm inte att redigera skypeforlinux.SlackBuild filen (version -> korrekt version), och kontrollera om du har uppdaterat alla "dependencies".
Länk för "käll-fil" här (OBS! Välj rätt fil)
New dhcp packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues.
Läs mer... Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/dhcp-4.4.3_P1-i586-1_slack15.0.txz: Upgraded.
This update fixes two security issues:
Corrected a reference count leak that occurs when the server builds responses to leasequery packets.
Corrected a memory leak that occurs when unpacking a packet that has an FQDN option (81)
that contains a label with length greater than 63 bytes.
Thanks to VictorV of Cyber Kunlun Lab for reporting these issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2929
(* Security fix *)
+--------------------------+
RSS resultat...
Till minne av Håkan Nilsson
Mitt Slackware
Appendix Programhantering