Slackware64-14.0 ChangeLog (2022-04-14)

Thu Apr 14 21:14:21 UTC 2022

  • patches/packages/git-2.30.4-x86_64-1_slack14.0.txz
    This update fixes a security issue where a Git worktree created by another
    user might be able to execute arbitrary code.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24765
    (* Security fix *)
  • patches/packages/gzip-1.12-x86_64-1_slack14.0.txz
    This update fixes a security issue:
    zgrep applied to a crafted file name with two or more newlines can no
    longer overwrite an arbitrary, attacker-selected file.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1271
    (* Security fix *)
  • patches/packages/xz-5.2.5-x86_64-1_slack14.0.txz
    This update fixes a security issue:
    xzgrep applied to a crafted file name with two or more newlines can no
    longer overwrite an arbitrary, attacker-selected file.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1271
    (* Security fix *)
  • news/2022/04/14/slackware64-14.0-changelog.txt
  • Last modified: 24 months ago
  • by Giuseppe Di Terlizzi