| Next revision | Previous revision |
| news:2013:11:18:slackware-14.1-changelog [2015/03/10 12:24] – creata Giuseppe Di Terlizzi | news:2013:11:18:slackware-14.1-changelog [2023/08/15 18:32] (current) – Giuseppe Di Terlizzi |
|---|
| |
| ====== Mon Nov 18 20:52:16 UTC 2013 ====== | ====== Mon Nov 18 20:52:16 UTC 2013 ====== |
| > | |
| |
| ===== Packages ===== | ===== Packages ===== |
| |
| ==== Upgraded ==== | ==== Upgraded ==== |
| * [[slackware.14.1>patches/packages/mozilla-firefox-24.1.1esr-i486-1_slack14.1.txz]] (Security fix) | * [[slackware.14.1>patches/packages/mozilla-firefox-24.1.1esr-i486-1_slack14.1.txz]] \\ This release contains security fixes and improvements. \\ For more information, see: \\ http://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html \\ (* Security fix *) |
| * [[slackware.14.1>patches/packages/openssh-6.4p1-i486-1_slack14.1.txz]] (Security fix) | * [[slackware.14.1>patches/packages/openssh-6.4p1-i486-1_slack14.1.txz]] \\ sshd(8): fix a memory corruption problem triggered during rekeying \\ when an AES-GCM cipher is selected. \\ For more information, see: \\ http://www.openssh.com/txt/gcmrekey.adv \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4548 \\ (* Security fix *) |
| * [[slackware.14.1>patches/packages/php-5.4.22-i486-1_slack14.1.txz]] | * [[slackware.14.1>patches/packages/php-5.4.22-i486-1_slack14.1.txz]] \\ This is a bugfix release. |
| * [[slackware.14.1>patches/packages/samba-4.1.1-i486-1_slack14.1.txz]] | * [[slackware.14.1>patches/packages/samba-4.1.1-i486-1_slack14.1.txz]] \\ This update fixes two security issues: \\ * Samba versions 3.2.0 and above do not check the underlying file or \\ directory ACL when opening an alternate data stream. \\ * In setups which provide ldap(s) and/or https services, the private key \\ for SSL/TLS encryption might be world readable. This typically happens \\ in active directory domain controller setups. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4475 \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4476 \\ (* Security fix *) \\ Added tdb.h, tdb.pc, and a libtdb.so symlink. Thanks to Matteo Bernardini. |
| * [[slackware.14.1>patches/packages/seamonkey-2.22-i486-1_slack14.1.txz]] (Security fix) | * [[slackware.14.1>patches/packages/seamonkey-2.22-i486-1_slack14.1.txz]] \\ This update contains security fixes and improvements. \\ For more information, see: \\ http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html \\ (* Security fix *) |
| * [[slackware.14.1>patches/packages/seamonkey-solibs-2.22-i486-1_slack14.1.txz]] | * [[slackware.14.1>patches/packages/seamonkey-solibs-2.22-i486-1_slack14.1.txz]] |
| ===== ChangeLog ===== | |
| <code> | |
| Mon Nov 18 20:52:16 UTC 2013 | |
| patches/packages/mozilla-firefox-24.1.1esr-i486-1_slack14.1.txz: Upgraded. | |
| This release contains security fixes and improvements. | |
| For more information, see: | |
| http://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html | |
| (* Security fix *) | |
| patches/packages/openssh-6.4p1-i486-1_slack14.1.txz: Upgraded. | |
| sshd(8): fix a memory corruption problem triggered during rekeying | |
| when an AES-GCM cipher is selected. | |
| For more information, see: | |
| http://www.openssh.com/txt/gcmrekey.adv | |
| http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4548 | |
| (* Security fix *) | |
| patches/packages/php-5.4.22-i486-1_slack14.1.txz: Upgraded. | |
| This is a bugfix release. | |
| patches/packages/samba-4.1.1-i486-1_slack14.1.txz: Upgraded. | |
| This update fixes two security issues: | |
| * Samba versions 3.2.0 and above do not check the underlying file or | |
| directory ACL when opening an alternate data stream. | |
| * In setups which provide ldap(s) and/or https services, the private key | |
| for SSL/TLS encryption might be world readable. This typically happens | |
| in active directory domain controller setups. | |
| For more information, see: | |
| http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4475 | |
| http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4476 | |
| (* Security fix *) | |
| Added tdb.h, tdb.pc, and a libtdb.so symlink. Thanks to Matteo Bernardini. | |
| patches/packages/seamonkey-2.22-i486-1_slack14.1.txz: Upgraded. | |
| This update contains security fixes and improvements. | |
| For more information, see: | |
| http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html | |
| (* Security fix *) | |
| patches/packages/seamonkey-solibs-2.22-i486-1_slack14.1.txz: Upgraded. | |
| </code> | |
| |
| |
| |
| {{tag>slackware changelog slackware-14.1 2013/11}} | {{tag>slackware changelog slackware-14.1 2013-11}} |
| |
Giuseppe Di Terlizzi