Slackwarearm-current ChangeLog (2017-07-01)
Sat Jul 01 08:08:08 UTC 2017
Packages
Rebuilt
- a/glibc-solibs-2.25-arm-2.txz
(* Security fix *) - l/glibc-2.25-arm-2.txz
Applied upstream security hardening patches from git.
For more information, see:
https://sourceware.org/git/?p=glibc.git;a=commit;h=3c7cd21290cabdadd72984fb69bc51e64ff1002d
https://sourceware.org/git/?p=glibc.git;a=commit;h=46703a3995aa3ca2b816814aa4ad05ed524194dd
https://sourceware.org/git/?p=glibc.git;a=commit;h=c69d4a0f680a24fdbe323764a50382ad324041e9
https://sourceware.org/git/?p=glibc.git;a=commit;h=3776f38fcd267c127ba5eb222e2c614c191744aa
https://sourceware.org/git/?p=glibc.git;a=commit;h=adc7e06fb412a2a1ee52f8cb788caf436335b9f3
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000366
(* Security fix *) - l/glibc-i18n-2.25-arm-2.txz
- l/glibc-profile-2.25-arm-2.txz
(* Security fix *) - isolinux/*
Upgraded
- a/kernel-modules-armv7-4.11.8_armv7-arm-1.txz
(* Security fix *) - a/kernel_armv7-4.11.8-arm-1.txz
This kernel fixes security issues that include possible stack exhaustion,
memory corruption, and arbitrary code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365
(* Security fix *) - a/mkinitrd-1.4.10-arm-1.txz
Added support for -P option and MICROCODE_ARCH in mkinitrd.conf to specify
a microcode archive to be prepended to the initrd for early CPU microcode
patching by the kernel. Thanks to SeB. - ap/nano-2.8.5-arm-1.txz
- ap/screen-4.6.0-arm-1.txz
- d/kernel-headers-4.11.8-arm-1.txz
- k/kernel-source-4.11.8-arm-1.txz
- l/pcre-8.40-arm-1.txz
- l/readline-7.0.003-arm-1.txz
- n/bind-9.11.1_P2-arm-1.txz
This update fixes a high severity security issue:
An error in TSIG handling could permit unauthorized zone transfers
or zone updates.
For more information, see:
https://kb.isc.org/article/AA-01503/0
https://kb.isc.org/article/AA-01504/0
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3142
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3143
(* Security fix *) - n/httpd-2.4.26-arm-1.txz
This update fixes security issues which may lead to an authentication bypass
or a denial of service:
important: ap_get_basic_auth_pw() Authentication Bypass CVE-2017-3167
important: mod_ssl Null Pointer Dereference CVE-2017-3169
important: mod_http2 Null Pointer Dereference CVE-2017-7659
important: ap_find_token() Buffer Overread CVE-2017-7668
important: mod_mime Buffer Overread CVE-2017-7679
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7659
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679
(* Security fix *) - n/libgcrypt-1.7.8-arm-1.txz
Mitigate a local flush+reload side-channel attack on RSA secret keys
dubbed “Sliding right into disaster”.
For more information, see:
https://eprint.iacr.org/2017/627
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526
(* Security fix *) - xfce/xfdesktop-4.12.4-arm-1.txz
- kernels/*
Giuseppe Di Terlizzi