Slackwarearm-14.0 ChangeLog (2014-02-25)
Tue Feb 25 20:53:28 UTC 2014
Packages
Rebuilt
- patches/packages/gnutls-3.0.31-arm-2_slack14.0.tgz
This update fixes a flaw where a version 1 intermediate certificate would be
considered as a CA certificate by GnuTLS by default.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1959
(* Security fix *)
Upgraded
- patches/packages/mysql-5.5.36-arm-1_slack14.0.tgz
This update fixes a buffer overflow in the mysql command line client which
may allow malicious or compromised database servers to cause a denial of
service (crash) and possibly execute arbitrary code via a long server
version string.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0001
(* Security fix *)