Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackwarearm-current ChangeLog (2019-04-04) ====== ====== Thu Apr 04 08:08:08 UTC 2019 ====== ===== Packages ===== ==== Rebuilt ==== * [[slackwarearm.current>a/aaa_elflibs-15.0-arm-5.txz]] \\ Upgraded: libelf-0.176.so, libpcre.so.1.2.11, libglib-2.0.so.0.6000.0, \\ libgmodule-2.0.so.0.6000.0, libgobject-2.0.so.0.6000.0, \\ libgthread-2.0.so.0.6000.0, libtdb.so.1.4.0. * [[slackwarearm.current>a/shadow-4.6-arm-2.txz]] \\ adduser: reprompt on invalid user input. Thanks to ttk. * [[slackwarearm.current>ap/ghostscript-9.26-arm-2.txz]] \\ Fixes security issues: \\ A specially crafted PostScript file could have access to the file system \\ outside of the constrains imposed by -dSAFER. \\ Transient procedures can allow access to system operators, leading to \\ remote code execution. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116 \\ (* Security fix *) * [[slackwarearm.current>ap/sqlite-3.27.2-arm-2.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>kde/calligra-2.9.11-arm-26.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>kde/kdepimlibs-4.14.10-arm-7.txz]] \\ Recompiled to pull in new gpgme++ header files. * [[slackwarearm.current>l/boost-1.69.0-arm-2.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>l/libical-3.0.4-arm-2.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>l/libvisio-0.1.6-arm-5.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>l/qt-4.8.7-arm-7.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>l/raptor2-2.0.15-arm-5.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>n/php-7.2.16-arm-2.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>n/tin-2.4.3-arm-2.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>t/texlive-2018.180822-arm-5.txz]] \\ Recompiled against icu4c-64.1. ==== Upgraded ==== * [[slackwarearm.current>a/hwdata-0.322-arm-1.txz]] * [[slackwarearm.current>a/kernel-firmware-20190402_67b7579-noarch-1.txz]] * [[slackwarearm.current>a/quota-4.05-arm-1.txz]] * [[slackwarearm.current>a/xfsprogs-4.20.0-arm-1.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>d/cmake-3.14.1-arm-1.txz]] * [[slackwarearm.current>d/patchelf-0.10-arm-1.txz]] * [[slackwarearm.current>d/vala-0.44.2-arm-1.txz]] * [[slackwarearm.current>l/ffmpeg-3.4.6-arm-1.txz]] * [[slackwarearm.current>l/giflib-5.1.9-arm-1.txz]] * [[slackwarearm.current>l/glib-networking-2.60.1-arm-1.txz]] * [[slackwarearm.current>l/harfbuzz-2.4.0-arm-1.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>l/icu4c-64.1-arm-1.txz]] \\ Shared library .so-version bump. * [[slackwarearm.current>l/imagemagick-6.9.10_36-arm-1.txz]] * [[slackwarearm.current>l/python-pillow-6.0.0-arm-1.txz]] * [[slackwarearm.current>l/utf8proc-2.3.0-arm-1.txz]] * [[slackwarearm.current>l/v4l-utils-1.16.5-arm-1.txz]] * [[slackwarearm.current>n/dovecot-2.3.5.1-arm-1.txz]] \\ Missing input buffer size validation leads into arbitrary buffer overflow \\ when reading fts or pop3 uidl header from Dovecot index. Exploiting this \\ requires direct write access to the index files. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7524 \\ (* Security fix *) \\ Compiled against icu4c-64.1. * [[slackwarearm.current>n/gpgme-1.13.0-arm-1.txz]] * [[slackwarearm.current>n/httpd-2.4.39-arm-1.txz]] \\ This release contains security fixes and improvements. \\ In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker \\ or prefork, code executing in less-privileged child processes or threads \\ (including scripts executed by an in-process scripting interpreter) could \\ execute arbitrary code with the privileges of the parent process by \\ manipulating the scoreboard. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211 \\ (* Security fix *) * [[slackwarearm.current>n/iputils-20190324-arm-1.txz]] * [[slackwarearm.current>n/postfix-3.4.5-arm-1.txz]] \\ Recompiled against icu4c-64.1. * [[slackwarearm.current>n/wget-1.20.2-arm-1.txz]] \\ Fixed an unspecified buffer overflow vulnerability. \\ (* Security fix *) * [[slackwarearm.current>n/whois-5.4.2-arm-1.txz]] * [[slackwarearm.current>x/libinput-1.13.0-arm-1.txz]] * [[slackwarearm.current>x/mesa-19.0.1-arm-1.txz]] * [[slackwarearm.current>x/vulkan-sdk-1.1.101.0-arm-1.txz]] {{tag>slackware changelog slackwarearm-current 2019/04}} news/2019/04/04/slackwarearm-current-changelog.txt Last modified: 5 years agoby Giuseppe Di Terlizzi Log In