Slackware64-current ChangeLog (2014-03-11)
Tue Mar 11 07:06:18 UTC 2014
Packages
Upgraded
- a/udisks-1.0.5-x86_64-1.txz
This update fixes a stack-based buffer overflow when handling long path
names. A malicious, local user could use this flaw to create a
specially-crafted directory structure that could lead to arbitrary code
execution with the privileges of the udisks daemon (root).
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0004
(* Security fix *) - a/udisks2-2.1.3-x86_64-1.txz
This update fixes a stack-based buffer overflow when handling long path
names. A malicious, local user could use this flaw to create a
specially-crafted directory structure that could lead to arbitrary code
execution with the privileges of the udisks daemon (root).
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0004
(* Security fix *)