Slackware-14.2 ChangeLog (2018-07-12)
Thu Jul 12 01:50:07 UTC 2018
Packages
Upgraded
- patches/packages/bind-9.10.8-i586-1_slack14.2.txz
This update fixes security issues:
Fixed a bug where extraordinarily large zone transfers caused several
problems, with possible outcomes including corrupted journal files or
server exit due to assertion failure.
Don't permit recursive query service to unauthorized clients.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5738
(* Security fix *) - patches/packages/curl-7.61.0-i586-1_slack14.2.txz
This update fixes a buffer overflow in SMTP send.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0500
(* Security fix *) - patches/packages/zlib-1.2.11-i586-1_slack14.2.txz
This is a bugfix package update to fix decompression errors when zlib is
used with recent versions of Node.js. Thanks to Ken Zalewski for the report.