This is an old revision of the document!
Slackwarearm-14.2 ChangeLog (2018-09-06)
Thu Sep 06 08:08:08 UTC 2018
Packages
Upgraded
- patches/packages/curl-7.61.1-arm-1_slack14.2.txz
This update fixes an NTLM password overflow via integer overflow.
For more information, see:
https://curl.haxx.se/docs/CVE-2018-14618.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618
(* Security fix *) - patches/packages/ghostscript-9.24-arm-1_slack14.2.txz
Patched multiple -dSAFER sandbox bypass vulnerabilities.
Thanks to Tavis Ormandy.
For more information, see:
https://www.ghostscript.com/doc/9.24/News.htm
https://www.kb.cert.org/vuls/id/332928
(* Security fix *)