Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackwarearm-14.2 ChangeLog (2016-12-15) ====== ====== Thu Dec 15 04:44:44 UTC 2016 ====== ===== Packages ===== ==== Upgraded ==== * [[slackwarearm.14.2>patches/packages/device-tree-compiler-1.4.2-arm-1_slack14.2.txz]] * [[slackwarearm.14.2>patches/packages/kernel-firmware-20161211git-noarch-1_slack14.2.txz]] * [[slackwarearm.14.2>patches/packages/linux-4.4.38/*]] \\ This kernel fixes a security issue with a race condition in \\ net/packet/af_packet.c that can be exploited to gain kernel code execution \\ from unprivileged processes. \\ Thanks to Philip Pettersson for discovering the bug and providing a patch. \\ For more information, see: \\ https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=84ac7260236a49c79eede91617700174c2c19b0c \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8655 \\ (* Security fix *) * [[slackwarearm.14.2>patches/packages/loudmouth-1.5.3-arm-1_slack14.2.txz]] \\ This update is needed for the mcabber security update. * [[slackwarearm.14.2>patches/packages/mcabber-1.0.4-arm-1_slack14.2.txz]] \\ This update fixes a security issue which can lead to a malicious actor \\ MITMing a conversation, or adding themselves as an entity on a third \\ parties roster (thereby granting themselves the associated priviledges \\ such as observing when the user is online). \\ For more information, see: \\ https://gultsch.de/gajim_roster_push_and_message_interception.html \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9928 \\ (* Security fix *) * [[slackwarearm.14.2>patches/packages/php-5.6.29-arm-1_slack14.2.txz]] \\ This release fixes bugs and security issues. \\ For more information, see: \\ https://php.net/ChangeLog-5.php#5.6.29 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9933 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9934 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9935 \\ (* Security fix *) {{tag>slackware changelog slackwarearm-14.2 2016-12}} news/2016/12/15/slackwarearm-14.2-changelog.txt Last modified: 7 months agoby Giuseppe Di Terlizzi Log In