Slackware-current ChangeLog (2017-10-06)
Fri Oct 6 06:32:32 UTC 2017
Packages
Upgraded
- ap/vim-8.0.1175-i586-1.txz
Compiled using libperl.so from perl-5.26.1. - d/perl-5.26.1-i586-1.txz
Added the following perl modules to support git send-email (thanks to
Xsane): Authen-SASL-2.16, MIME-Base64-3.15, and Net-SMTP-SSL-1.04. - k/kernel-source-4.9.53_smp-noarch-1.txz
KSM n → y (thanks to ivandi) - l/openjpeg-2.3.0-i586-1.txz
This update fixes security issues which may lead to a denial of service
or possibly remote code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9572
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9573
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9580
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9581
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12982
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14151
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14164
(* Security fix *) - n/curl-7.56.0-i586-1.txz
This update fixes a security issue:
libcurl may read outside of a heap allocated buffer when doing FTP.
For more information, see:
https://curl.haxx.se/docs/adv_20171004.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254
(* Security fix *) - x/xorg-server-1.19.4-i586-1.txz
This update fixes two security issues:
Xext/shm: Validate shmseg resource id, otherwise it can belong to a
non-existing client and abort X server with FatalError “client not
in use”, or overwrite existing segment of another existing client.
Generating strings for XKB data used a single shared static buffer,
which offered several opportunities for errors. Use a ring of
resizable buffers instead, to avoid problems when strings end up
longer than anticipated.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
(* Security fix *) - xap/vim-gvim-8.0.1175-i586-1.txz
Compiled using libperl.so from perl-5.26.1.
Rebuilt
- kde/perlkde-4.14.3-i586-4.txz
Recompiled using libperl.so from perl-5.26.1. - kde/perlqt-4.14.3-i586-4.txz
Recompiled using libperl.so from perl-5.26.1. - n/epic5-2.0.1-i586-2.txz
Recompiled using libperl.so from perl-5.26.1. - n/irssi-1.0.4-i586-2.txz
Recompiled using libperl.so from perl-5.26.1. - n/net-snmp-5.7.3-i586-6.txz
Recompiled using libperl.so from perl-5.26.1. - n/ntp-4.2.8p10-i586-2.txz
Recompiled using libperl.so from perl-5.26.1. - xap/hexchat-2.12.4-i586-2.txz
Recompiled using libperl.so from perl-5.26.1.
Built with –enable-python=python3. - xap/pidgin-2.12.0-i586-2.txz
Recompiled using libperl.so from perl-5.26.1.