This is an old revision of the document!


Slackware-13.0 ChangeLog (2009-10-03)

Sat Oct 3 18:19:00 CDT 2009

patches/packages/php-5.2.11-i486-1_slack13.0.txz:
This release fixes some possible security issues, all of which have
“unknown impact and attack vectors”.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3291
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3292
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3293
(* Security fix *)
patches/packages/samba-3.2.15-i486-1_slack13.0.txz:
This update fixes the following security issues.
A misconfigured /etc/passwd with no defined home directory could allow
security restrictions to be bypassed.
mount.cifs could allow a local user to read the first line of an arbitrary
file if installed setuid. (On Slackware, it was not installed setuid)
Specially crafted SMB requests could cause a denial of service.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2948
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2906
(* Security fix *)
  • news/2009/10/03/slackware-13.0-changelog.1462224796.txt.gz
  • Last modified: 8 years ago
  • by Giuseppe Di Terlizzi