Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware64-14.2 ChangeLog (2022-06-08) ====== ====== Wed Jun 8 19:15:34 UTC 2022 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware64.14.2>patches/packages/httpd-2.4.54-x86_64-1_slack14.2.txz]] \\ This update fixes bugs and the following security issues: \\ mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism. \\ Information Disclosure in mod_lua with websockets. \\ mod_sed denial of service. \\ Denial of service in mod_lua r:parsebody. \\ Read beyond bounds in ap_strcmp_match(). \\ Read beyond bounds via ap_rwrite(). \\ Read beyond bounds in mod_isapi. \\ mod_proxy_ajp: Possible request smuggling. \\ For more information, see: \\ https://downloads.apache.org/httpd/CHANGES_2.4.54 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31813 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30556 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30522 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29404 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28615 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28614 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28330 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26377 \\ (* Security fix *) {{tag>slackware changelog slackware64-14.2 2022-06}} news/2022/06/08/slackware64-14.2-changelog.txt Last modified: 23 months agoby Giuseppe Di Terlizzi Log In