Slackwarearm-14.2 ChangeLog (2015-01-11)
Sun Jan 11 21:49:15 UTC 2015
Packages
Upgraded
- a/kernel-firmware-20150110git-noarch-1.txz
Added Realtek NIC drivers (/lib/firmware/rtl_nic) that had previously been
embedded in the armv7 kernel. - a/kernel-modules-armv7-3.18.2_armv7-arm-1.txz
- a/kernel-modules-kirkwood-3.18.2_kirkwood-arm-1.txz
- a/kernel_armv7-3.18.2-arm-1.txz
Removed embedded Realtek NIC drivers.
Added DRM/DRI support. - a/kernel_kirkwood-3.18.2-arm-1.txz
- a/openssl-solibs-1.0.1k-arm-1.txz
(* Security fix *) - k/kernel-source-3.18.2-arm-1.txz
- n/openssl-1.0.1k-arm-1.txz
This update fixes several security issues:
DTLS segmentation fault in dtls1_get_record (CVE-2014-3571)
DTLS memory leak in dtls1_buffer_record (CVE-2015-0206)
no-ssl3 configuration sets method to NULL (CVE-2014-3569)
ECDHE silently downgrades to ECDH [Client] (CVE-2014-3572)
RSA silently downgrades to EXPORT_RSA [Client] (CVE-2015-0204)
DH client certificates accepted without verification [Server] (CVE-2015-0205)
Certificate fingerprints can be modified (CVE-2014-8275)
Bignum squaring may produce incorrect results (CVE-2014-3570)
For more information, see:
https://www.openssl.org/news/secadv_20150108.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3571
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0206
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3569
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3572
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0204
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0205
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8275
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3570
(* Security fix *) - xap/fluxbox-1.3.6-arm-1.txz
- kernels/*
Rebuilt
- isolinux/*
Added /lib/firmware NIC drivers for all platforms. This has increased the
size of the initial RAM disks by about 8Mbytes, but this is not an issue
for the supported platforms.