Slackware-13.0 ChangeLog (2009-06-19)

Fri Jun 19 18:22:20 CDT 2009

  • d/ruby-1.8.7_p174-i486-1.txz
    This fixes a denial of service issue caused by the BigDecimal method
    handling large input values improperly that may allow attackers to
    crash the interpreter. The issue affects most Rails applications.
    For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1904
    (* Security fix *)
  • l/libpng-1.2.37-i486-1.txz
    This update fixes a possible security issue. Jeff Phillips discovered an
    uninitialized-memory-read bug affecting interlaced images that may have
    security implications.
    For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2042
    (* Security fix *)
  • x/mesa-7.4.1-i486-1.txz
    Well, actually more like “switched”, or “reverted”. After many hours
    trying to track down the reason for reported instability with X and
    compositing (such as crashes when adjusting advanced desktop settings in
    KDE), we've found that it seems to happen only with MesaLib 7.4.2. Rather
    than trying to cherry-pick changes between 7.4.1 and 7.4.2, we've switched
    to shipping 7.4.1 in the main tree, and have not run into any such problems
    since making the switch. If people want to continue testing 7.4.2, we've
    moved it into /testing. Let us know if you run into any problems with
    7.4.1 that are fixed with 7.4.2, and we'll take a look at individual diffs.
  • extra/kde3-compat/k3b3-1.0.5-i486-opt1.txz
    In case the KDE4 version of k3b is not stable, this KDE3 version may be
    used along with the KDE3 compatibility packages in extra/kde3-compat/.
    testing/packages/mesa-7.4.2-i486-2.txz: Moved to /testing due to apparent
    regressions.

Thu Jun 18 21:21:04 CDT 2009

  • n/samba-3.2.12-i486-1.txz
  • t/xfig-3.2.4-i486-4.txz
    to fix crashes. Thanks to Petri Kaukasoina for the bug report.
  • news/2009/06/19/slackware-13.0-changelog.txt
  • Last modified: 5 years ago
  • by Giuseppe Di Terlizzi