| Both sides previous revision Previous revision Next revision | Previous revision |
| news:2014:01:28:slackware64-current-changelog [2015/03/10 12:05] – Giuseppe Di Terlizzi | news:2014:01:28:slackware64-current-changelog [2015/03/26 10:44] (current) – Giuseppe Di Terlizzi |
|---|
| |
| ====== Tue Jan 28 21:07:13 UTC 2014 ====== | ====== Tue Jan 28 21:07:13 UTC 2014 ====== |
| > | |
| |
| ===== Packages ===== | ===== Packages ===== |
| |
| ==== Upgraded ==== | ==== Upgraded ==== |
| * [[slackware64.current>l/mozilla-nss-3.15.4-x86_64-1.txz]] (Security fix) | * [[slackware64.current>l/mozilla-nss-3.15.4-x86_64-1.txz]] \\ Upgraded to nss-3.15.4 and nspr-4.10.3. \\ Fixes a possible man-in-the-middle issue. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1740 \\ (* Security fix *) |
| * [[slackware64.current>n/bind-9.9.4_P2-x86_64-1.txz]] (Security fix) | * [[slackware64.current>n/bind-9.9.4_P2-x86_64-1.txz]] \\ This update fixes a defect in the handling of NSEC3-signed zones that can \\ cause BIND to be crashed by a specific set of queries. \\ NOTE: According to the second link below, Slackware is probably not \\ vulnerable since we aren't using glibc-2.18 yet. Might as well fix it \\ anyway, though. \\ For more information, see: \\ https://kb.isc.org/article/AA-01078 \\ https://kb.isc.org/article/AA-01085 \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591 \\ (* Security fix *) |
| ===== ChangeLog ===== | |
| <code> | |
| Tue Jan 28 21:07:13 UTC 2014 | |
| l/mozilla-nss-3.15.4-x86_64-1.txz: Upgraded. | |
| Upgraded to nss-3.15.4 and nspr-4.10.3. | |
| Fixes a possible man-in-the-middle issue. | |
| For more information, see: | |
| http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1740 | |
| (* Security fix *) | |
| n/bind-9.9.4_P2-x86_64-1.txz: Upgraded. | |
| This update fixes a defect in the handling of NSEC3-signed zones that can | |
| cause BIND to be crashed by a specific set of queries. | |
| NOTE: According to the second link below, Slackware is probably not | |
| vulnerable since we aren't using glibc-2.18 yet. Might as well fix it | |
| anyway, though. | |
| For more information, see: | |
| https://kb.isc.org/article/AA-01078 | |
| https://kb.isc.org/article/AA-01085 | |
| http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591 | |
| (* Security fix *) | |
| </code> | |
| |
| |
| {{tag>slackware changelog slackware64-current 2014/01}} | {{tag>slackware changelog slackware64-current 2014/01}} |
| |
Giuseppe Di Terlizzi