Slackwarearm-current ChangeLog (2017-07-14)
Fri Jul 14 08:08:08 UTC 2017
Packages
Rebuilt
- a/mkinitrd-1.4.11-arm-3.txz
Process initrd output filename template strings %KVER% and %SLACKVER%
after processing all other options to prevent depending on the command
line order for proper functioning. Thanks to SeB.
Upgraded
- n/httpd-2.4.27-arm-1.txz
This update fixes two security issues:
Read after free in mod_http2 (CVE-2017-9789)
Uninitialized memory reflection in mod_auth_digest (CVE-2017-9788)
Thanks to Robert Swiecki for reporting these issues.
For more information, see:
https://httpd.apache.org/security/vulnerabilities_24.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9789
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9788
(* Security fix *)