Slackware64-14.0 ChangeLog (2019-01-11)
Fri Jan 11 21:15:41 UTC 2019
Packages
Upgraded
- patches/packages/glibc-zoneinfo-2018i-noarch-1_slack14.0.txz
This package provides the latest timezone updates. - patches/packages/irssi-1.1.2-x86_64-1_slack14.0.txz
This update addresses bugs including security and stability issues:
A NULL pointer dereference occurs for an “empty” nick.
Certain nick names could result in out-of-bounds access when printing
theme strings.
Crash due to a NULL pointer dereference w hen the number of windows
exceeds the available space.
Use-after-free when SASL messages are received in an unexpected order.
Use-after-free when a server is disconnected during netsplits.
Use-after-free when hidden lines were expired from the scroll buffer.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5882
(* Security fix *)