Slackware-14.2 ChangeLog (2022-02-21)
Mon Feb 21 20:21:38 UTC 2022
Packages
Rebuilt
- patches/packages/expat-2.4.3-i586-5_slack14.2.txz
Fixed a regression introduced by the fix for CVE-2022-25313 that affects
applications that (1) call function XML_SetElementDeclHandler and (2) are
parsing XML that contains nested element declarations:
(e.g. “<!ELEMENT junk ((bar|foo|xyz+), zebra*)>”).
Upgraded
- patches/packages/flac-1.3.4-i586-1_slack14.2.txz
This update fixes overflow issues with encoding and decoding.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0499
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0561
(* Security fix *)