Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware-12.1 ChangeLog (2013-08-06) ====== ====== Tue Aug 6 05:23:34 UTC 2013 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware.12.1>patches/packages/bind-9.8.5_P2-i486-1_slack12.1.tgz]] \\ This update fixes a security issue where a specially crafted query can cause \\ BIND to terminate abnormally, resulting in a denial of service. \\ For more information, see: \\ https://kb.isc.org/article/AA-01015 \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4854 \\ (* Security fix *) * [[slackware.12.1>patches/packages/httpd-2.2.25-i486-1_slack12.1.tgz]] \\ This update addresses two security issues: \\ * SECURITY: CVE-2013-1862 (cve.mitre.org) mod_rewrite: Ensure that client \\ data written to the RewriteLog is escaped to prevent terminal escape \\ sequences from entering the log file. \\ * SECURITY: CVE-2013-1896 (cve.mitre.org) mod_dav: Sending a MERGE request \\ against a URI handled by mod_dav_svn with the source href (sent as part of \\ the request body as XML) pointing to a URI that is not configured for DAV \\ will trigger a segfault. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1862 \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1896 \\ (* Security fix *) {{tag>slackware changelog slackware-12.1 2013-08}} news/2013/08/06/slackware-12.1-changelog.txt Last modified: 3 years agoby Giuseppe Di Terlizzi Log In