Slackware64-13.1 ChangeLog (2018-03-01)

Thu Mar 1 23:24:54 UTC 2018

  • patches/packages/dhcp-4.4.1-x86_64-1_slack13.1.txz
    This update fixes two security issues:
    Corrected an issue where large sized 'X/x' format options were causing
    option handling logic to overwrite memory when expanding them to human
    readable form. Reported by Felix Wilhelm, Google Security Team.
    Option reference count was not correctly decremented in error path
    when parsing buffer for options. Reported by Felix Wilhelm, Google
    Security Team.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5732
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5733
    (* Security fix *)
  • news/2018/03/01/slackware64-13.1-changelog.txt
  • Last modified: 3 years ago
  • by Giuseppe Di Terlizzi