news:2020:04:14:slackware64-15.0-changelog

Slackware64-15.0 ChangeLog (2020-04-14)

Tue Apr 14 22:26:11 UTC 2020

Packages

Upgraded

  • a/gawk-5.1.0-x86_64-1.txz
  • a/gettext-0.20.2-x86_64-1.txz
  • d/gettext-tools-0.20.2-x86_64-1.txz
  • d/git-2.26.1-x86_64-1.txz
    This update fixes a security issue:
    With a crafted URL that contains a newline in it, the credential helper
    machinery can be fooled to give credential information for a wrong host.
    The attack has been made impossible by forbidding a newline character in
    any value passed via the credential protocol. Credit for finding the
    vulnerability goes to Felix Wilhelm of Google Project Zero.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5260
    (* Security fix *)
  • l/glib-networking-2.64.2-x86_64-1.txz
  • l/libsecret-0.20.3-x86_64-1.txz
  • n/php-7.4.5-x86_64-1.txz
  • x/xorgproto-2020.1-x86_64-1.txz
  • xap/audacious-4.0.2-x86_64-1.txz
  • xap/audacious-plugins-4.0.2-x86_64-1.txz
  • extra/pure-alsa-system/audacious-plugins-4.0.2-x86_64-1_alsa.txz
, , ,
  • news/2020/04/14/slackware64-15.0-changelog.txt
  • Last modified: 2 years ago
  • by Giuseppe Di Terlizzi