Slackwarearm-14.2 ChangeLog (2017-05-18)
Thu May 18 11:11:11 UTC 2017
Packages
Rebuilt
- patches/packages/freetype-2.6.3-arm-3_slack14.2.txz
This update fixes an out-of-bounds write caused by a heap-based buffer
overflow related to the t1_builder_close_contour function in psaux/psobjs.c.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8287
(* Security fix *) - patches/packages/kdelibs-4.14.32-arm-2_slack14.2.txz
This update fixes a security issue with KAuth that can lead to gaining
root from an unprivileged account.
For more information, see:
http://www.openwall.com/lists/oss-security/2017/05/10/3
https://www.kde.org/info/security/advisory-20170510-1.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8422
(* Security fix *)