Slackware-current ChangeLog (2017-09-15)
Fri Sep 15 17:31:57 UTC 2017
Packages
Upgraded
- a/kernel-modules-4.9.50-i586-1.txz
Fixed BlueBorne vulnerability in bluetooth.ko module.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000251
https://www.armis.com/blueborne
(* Security fix *) - a/kernel-modules-smp-4.9.50_smp-i686-1.txz
Fixed BlueBorne vulnerability in bluetooth.ko module.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000251
https://www.armis.com/blueborne
(* Security fix *) - k/kernel-source-4.9.50_smp-noarch-1.txz
This update fixes the security vulnerability known as “BlueBorne”.
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at
Linux kernel version 3.3-rc1 is vulnerable to a stack overflow in
the processing of L2CAP configuration responses resulting in remote
code execution in kernel space.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000251
https://www.armis.com/blueborne
(* Security fix *) - l/gvfs-1.34.0-i586-1.txz
Don't set AutoMount=false in network.mount (fixes tree view in Thunar).
Thanks to PROBLEMCHYLD. - n/bluez-5.47-i586-1.txz
Fixed an information disclosure vulnerability which allows remote attackers
to obtain sensitive information from the bluetoothd process memory. This
vulnerability lies in the processing of SDP search attribute requests.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000250
(* Security fix *)