Slackware-14.2 ChangeLog (2022-02-01)
Tue Feb 1 04:37:04 UTC 2022
Packages
Upgraded
- patches/packages/kernel-firmware-20220124_eb8ea1b-noarch-1.txz
- patches/packages/linux-4.4.301/*
These updates fix various bugs and security issues, including the recently
announced i915 issue that could lead to user-space gaining access to random
memory pages (CVE-2022-0330).
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure lilo.conf points to the correct
kernel and initrd and run lilo as root to update the bootloader.
If you use elilo to boot your machine, you should run eliloconfig to copy the
kernel and initrd to the EFI System Partition.
For more information, see:
https://seclists.org/oss-sec/2022/q1/81
Fixed in 4.4.277:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38204
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3679
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37576
Fixed in 4.4.278:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0920
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21781
Fixed in 4.4.281:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38205
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3732
Fixed in 4.4.282:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3653
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42008
Fixed in 4.4.283:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3753
Fixed in 4.4.284:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40490
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3702
Fixed in 4.4.285:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20320
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3655
Fixed in 4.4.288:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4203
Fixed in 4.4.289:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29374
Fixed in 4.4.290:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3896
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20321
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3760
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43389
Fixed in 4.4.291:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3772
Fixed in 4.4.292:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37159
Fixed in 4.4.293:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4202
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3752
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3640
Fixed in 4.4.294:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4002
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4083
Fixed in 4.4.295:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39685
Fixed in 4.4.296:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28715
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28713
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28712
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28711
Fixed in 4.4.299:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45095
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4155
Fixed in 4.4.300:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43976
Fixed in 4.4.301:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0330
(* Security fix *)
Giuseppe Di Terlizzi