Kernel 4.4.179 innehåller 170 uppdateringar, förändringar och/eller nya funktioner sedan 4.4.178.
Mer information om detta, vänligen kolla igenom changelog i länken ovan.
OBS fortfarande ingen officiell uppdatering från Pat för Slackware 14.2.
[slackware-security] libpng (SSA:2019-107-01)
New libpng packages are available for Slackware 14.2 and -current to
fix security issues.
Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/libpng-1.6.37-i586-1_slack14.2.txz: Upgraded.
This update fixes security issues:
Fixed a use-after-free vulnerability (CVE-2019-7317) in png_image_free.
Fixed a memory leak in the ARM NEON implementation of png_do_expand_palette.
Fixed a memory leak in pngtest.c.
Fixed two vulnerabilities (CVE-2018-14048, CVE-2018-14550) in
contrib/pngminus; refactor.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14048
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317
(* Security fix *)
+--------------------------+
[slackware-security] httpd (SSA:2019-096-01)
New httpd packages are available for Slackware 14.0, 14.1, 14.2, and -current
to fix a security issue.
Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/httpd-2.4.39-i586-1_slack14.2.txz: Upgraded.
This release contains security fixes and improvements.
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker
or prefork, code executing in less-privileged child processes or threads
(including scripts executed by an in-process scripting interpreter) could
execute arbitrary code with the privileges of the parent process by
manipulating the scoreboard.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211
(* Security fix *)
+--------------------------+
[slackware-security] openjpeg (SSA:2019-095-01)
New openjpeg packages are available for Slackware 14.2 and -current to
fix security issues.
Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/openjpeg-2.3.1-i586-1_slack14.2.txz: Upgraded.
Includes many bug fixes (including security fixes).
(* Security fix *)
+--------------------------+
[slackware-security] wget (SSA:2019-095-02)
New wget packages are available for Slackware 14.2 and -current to fix a
security issue.
Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/wget-1.20.3-i586-1_slack14.2.txz: Upgraded.
Fixed a buffer overflow vulnerability:
src/iri.c(do_conversion): Reallocate the output buffer to a larger
size if it is already full.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5953
(* Security fix *)
+--------------------------+
RSS resultat...
Till minne av Håkan Nilsson
Mitt Slackware
Appendix Programhantering