Slackware-current ChangeLog (2016-04-30)
Sat Apr 30 20:28:33 UTC 2016
Packages
Rebuilt
- n/yptools-2.14-i586-6.txz
Don't remove unmerged .new config files. Thanks to christian laubscher.
Upgraded
- d/subversion-1.9.4-i586-1.txz
This release fixes two security issues:
CVE-2016-2167: svnserve/sasl may authenticate users using the wrong realm.
CVE-2016-2168: Remotely triggerable DoS vulnerability in mod_authz_svn
during COPY/MOVE authorization check.
For more information, see:
http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2167
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2168
(* Security fix *)