Slackwarearm-14.1 ChangeLog (2016-06-15)

Wed Jun 15 16:17:18 UTC 2016

  • patches/packages/glibc-zoneinfo-2016e-arm-1_slack14.1.txz
    This package provides the latest timezone updates.
  • patches/packages/pidgin-2.10.12-arm-1_slack14.1.txz
    Use the much larger collection of SSL certs in /etc/ssl/certs rather
    than the ones that ship with Pidgin, otherwise certificates issued by
    Let's Encrypt (and others) cannot be verified. Thanks to Cesare.
  • patches/packages/wget-1.18-arm-1_slack14.1.txz
    This version fixes a security vulnerability present in all old versions
    of wget. On a server redirect from HTTP to a FTP resource, wget would
    trust the HTTP server and use the name in the redirected URL as the
    destination filename. This behaviour was changed and now it works
    similarly as a redirect from HTTP to another HTTP resource so the original
    name is used as the destination file. To keep the previous behaviour the
    user must provide –trust-server-names.
    The vulnerability was discovered by Dawid Golunski and was reported by
    Beyond Security's SecuriTeam.
    For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4971
    (* Security fix *)
  • news/2016/06/15/slackwarearm-14.1-changelog.txt
  • Last modified: 4 years ago
  • by Giuseppe Di Terlizzi