Slackware64-14.2 ChangeLog (2021-04-29)
Thu Apr 29 18:49:00 UTC 2021
Packages
Upgraded
- patches/packages/httpd-2.4.47-x86_64-1_slack14.2.txz
This is the latest release from the Apache HTTP Server 2.4.x stable branch.
Thu Apr 29 01:37:15 UTC 2021
Packages
Upgraded
- patches/packages/bind-9.11.31-x86_64-1_slack14.2.txz
This update fixes bugs and the following security issues:
A specially crafted GSS-TSIG query could cause a buffer overflow in the
ISC implementation of SPNEGO.
named crashed when a DNAME record placed in the ANSWER section during DNAME
chasing turned out to be the final answer to a client query.
Insufficient IXFR checks could result in named serving a zone without an SOA
record at the apex, leading to a RUNTIME_CHECK assertion failure when the
zone was subsequently refreshed. This has been fixed by adding an owner name
check for all SOA records which are included in a zone transfer.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25216
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25214
(* Security fix *)