Both sides previous revision Previous revision Next revision | Previous revision |
news:2014:01:28:slackware64-current-changelog [2015/03/10 12:05] – Giuseppe Di Terlizzi | news:2014:01:28:slackware64-current-changelog [2015/03/26 10:44] (current) – Giuseppe Di Terlizzi |
---|
| |
====== Tue Jan 28 21:07:13 UTC 2014 ====== | ====== Tue Jan 28 21:07:13 UTC 2014 ====== |
> | |
| |
===== Packages ===== | ===== Packages ===== |
| |
==== Upgraded ==== | ==== Upgraded ==== |
* [[slackware64.current>l/mozilla-nss-3.15.4-x86_64-1.txz]] (Security fix) | * [[slackware64.current>l/mozilla-nss-3.15.4-x86_64-1.txz]] \\ Upgraded to nss-3.15.4 and nspr-4.10.3. \\ Fixes a possible man-in-the-middle issue. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1740 \\ (* Security fix *) |
* [[slackware64.current>n/bind-9.9.4_P2-x86_64-1.txz]] (Security fix) | * [[slackware64.current>n/bind-9.9.4_P2-x86_64-1.txz]] \\ This update fixes a defect in the handling of NSEC3-signed zones that can \\ cause BIND to be crashed by a specific set of queries. \\ NOTE: According to the second link below, Slackware is probably not \\ vulnerable since we aren't using glibc-2.18 yet. Might as well fix it \\ anyway, though. \\ For more information, see: \\ https://kb.isc.org/article/AA-01078 \\ https://kb.isc.org/article/AA-01085 \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591 \\ (* Security fix *) |
===== ChangeLog ===== | |
<code> | |
Tue Jan 28 21:07:13 UTC 2014 | |
l/mozilla-nss-3.15.4-x86_64-1.txz: Upgraded. | |
Upgraded to nss-3.15.4 and nspr-4.10.3. | |
Fixes a possible man-in-the-middle issue. | |
For more information, see: | |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1740 | |
(* Security fix *) | |
n/bind-9.9.4_P2-x86_64-1.txz: Upgraded. | |
This update fixes a defect in the handling of NSEC3-signed zones that can | |
cause BIND to be crashed by a specific set of queries. | |
NOTE: According to the second link below, Slackware is probably not | |
vulnerable since we aren't using glibc-2.18 yet. Might as well fix it | |
anyway, though. | |
For more information, see: | |
https://kb.isc.org/article/AA-01078 | |
https://kb.isc.org/article/AA-01085 | |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591 | |
(* Security fix *) | |
</code> | |
| |
| |
{{tag>slackware changelog slackware64-current 2014/01}} | {{tag>slackware changelog slackware64-current 2014/01}} |
| |