Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackwarearm-14.1 ChangeLog (2016-06-15) ====== ====== Wed Jun 15 16:17:18 UTC 2016 ====== ===== Packages ===== ==== Upgraded ==== * [[slackwarearm.14.1>patches/packages/glibc-zoneinfo-2016e-arm-1_slack14.1.txz]] \\ This package provides the latest timezone updates. * [[slackwarearm.14.1>patches/packages/pidgin-2.10.12-arm-1_slack14.1.txz]] \\ Use the much larger collection of SSL certs in /etc/ssl/certs rather \\ than the ones that ship with Pidgin, otherwise certificates issued by \\ Let's Encrypt (and others) cannot be verified. Thanks to Cesare. * [[slackwarearm.14.1>patches/packages/wget-1.18-arm-1_slack14.1.txz]] \\ This version fixes a security vulnerability present in all old versions \\ of wget. On a server redirect from HTTP to a FTP resource, wget would \\ trust the HTTP server and use the name in the redirected URL as the \\ destination filename. This behaviour was changed and now it works \\ similarly as a redirect from HTTP to another HTTP resource so the original \\ name is used as the destination file. To keep the previous behaviour the \\ user must provide --trust-server-names. \\ The vulnerability was discovered by Dawid Golunski and was reported by \\ Beyond Security's SecuriTeam. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4971 \\ (* Security fix *) {{tag>slackware changelog slackwarearm-14.1 2016-06}} news/2016/06/15/slackwarearm-14.1-changelog.txt Last modified: 3 years agoby Giuseppe Di Terlizzi Log In