Slackware64-current ChangeLog (2022-11-09)
Wed Nov 9 22:16:30 UTC 2022
Packages
Upgraded
- ap/sysstat-12.7.1-x86_64-1.txz
On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1,
allocate_structures contains a size_t overflow in sa_common.c. The
allocate_structures function insufficiently checks bounds before arithmetic
multiplication, allowing for an overflow in the size allocated for the
buffer representing system activities.
This issue may lead to Remote Code Execution (RCE).
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-39377
(* Security fix *) - xfce/xfce4-settings-4.16.4-x86_64-1.txz
Fixed an argument injection vulnerability in xfce4-mime-helper.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-45062
(* Security fix *)