Slackware-14.1 ChangeLog (2016-05-27)
Fri May 27 23:08:17 UTC 2016
Packages
Upgraded
- patches/packages/libxml2-2.9.4-i486-1_slack14.1.txz
This release fixes bugs and security issues:
Heap-based buffer underreads due to xmlParseName (CVE-2016-4447).
Format string vulnerability (CVE-2016-4448).
Inappropriate fetch of entities content (CVE-2016-4449).
For more information, see:
http://xmlsoft.org/news.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4447
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4448
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4449
(* Security fix *) - patches/packages/libxslt-1.1.29-i486-1_slack14.1.txz
This release fixes bugs and a security issue:
Fix for type confusion in preprocessing attributes (Daniel Veillard).
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7995
(* Security fix *) - patches/packages/php-5.6.22-i486-1_slack14.1.txz
This release fixes bugs and security issues.
For more information, see:
http://php.net/ChangeLog-5.php#5.6.22
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7456
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5096
(* Security fix *)