Slackware-14.1 ChangeLog (2013-03-03)
Sun Mar 3 22:10:56 UTC 2013
Packages
Upgraded
- n/httpd-2.4.4-i486-1.txz
This update provides bugfixes and enhancements.
Two security issues are fixed:
* Various XSS flaws due to unescaped hostnames and URIs HTML output in
mod_info, mod_status, mod_imagemap, mod_ldap, and mod_proxy_ftp.
[Jim Jagielski, Stefan Fritsch, Niels Heinen <heinenn google com>]
* XSS in mod_proxy_balancer manager interface. [Jim Jagielski,
Niels Heinen <heinenn google com>]
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3499
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4558
(* Security fix *)
Rebuilt
- x/fontconfig-2.10.2-i486-3.txz
Applied patch from upstream git to fix 10-autohint.conf.