Slackwarearm-current ChangeLog (2017-07-16)
Sun Jul 16 08:08:08 UTC 2017
The mini root filesystem for -current has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/
Packages
Upgraded
- ap/mariadb-10.0.31-arm-1.txz
This update fixes bugs and security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3308
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3309
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3453
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3464
(* Security fix *) - l/gst-plugins-base-1.12.2-arm-1.txz
- l/gst-plugins-good-1.12.2-arm-1.txz
- l/gst-plugins-libav-1.12.2-arm-1.txz
- l/gstreamer-1.12.2-arm-1.txz
- l/libjpeg-turbo-1.5.2-arm-1.txz
- n/samba-4.6.6-arm-1.txz
This update fixes an authentication validation bypass security issue:
“Orpheus' Lyre mutual authentication validation bypass”
All versions of Samba from 4.0.0 onwards using embedded Heimdal
Kerberos are vulnerable to a man-in-the-middle attack impersonating
a trusted server, who may gain elevated access to the domain by
returning malicious replication or authorization data.
Samba binaries built against MIT Kerberos are not vulnerable.
For more information, see:
https://www.samba.org/samba/security/CVE-2017-11103.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11103
(* Security fix *) - x/mesa-17.1.5-arm-1.txz