Mon Nov 18 20:52:16 UTC 2013
l/seamonkey-solibs-2.22-x86_64-1.txz: Upgraded.
n/openssh-6.4p1-x86_64-1.txz: Upgraded.
sshd(8): fix a memory corruption problem triggered during rekeying
when an AES-GCM cipher is selected.
For more information, see:
http://www.openssh.com/txt/gcmrekey.adv
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4548
(* Security fix *)
n/php-5.4.22-x86_64-1.txz: Upgraded.
This is a bugfix release.
n/samba-4.1.1-x86_64-1.txz: Upgraded.
This update fixes two security issues:
* Samba versions 3.2.0 and above do not check the underlying file or
directory ACL when opening an alternate data stream.
* In setups which provide ldap(s) and/or https services, the private key
for SSL/TLS encryption might be world readable. This typically happens
in active directory domain controller setups.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4475
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4476
(* Security fix *)
Added tdb.h, tdb.pc, and a libtdb.so symlink. Thanks to Matteo Bernardini.
xap/mozilla-firefox-25.0.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/firefox.html
(* Security fix *)
xap/seamonkey-2.22-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html
(* Security fix *)
Giuseppe Di Terlizzi