[slackware-security] tigervnc

New tigervnc packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/tigervnc/tigervnc-1.12.0-i586-5slack15.0.txz: Rebuilt. Recompiled against xorg-server-1.20.14, including the latest patches for several securit...

Slackware Linux 15.0 / current tigervnc Multiple Vulnerabilities (SSA:2024-021-01)

The version of tigervnc installed on the remote host is prior to 1.12.0 / 1.13.1. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-021-01 advisory. - A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a...

Slackware: Security Advisory (SSA:2024-016-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2024-016-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] xorg-server

New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-11slack15.0.txz: Rebuilt. This update fixes security issues: Heap buffer overflow in DeviceFocusEvent an...

[slackware-security] gnutls

New gnutls packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gnutls-3.8.3-i586-1slack15.0.txz: Upgraded. This update fixes two medium severity security issues: Fix more timing side-channel inside...

Slackware Linux 15.0 / current xorg-server Multiple Vulnerabilities (SSA:2024-016-02)

The version of xorg-server installed on the remote host is prior to 1.20.14 / 21.1.11 / 21.1.4 / 23.2.4. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-016-02 advisory. Note that Nessus has not tested for these issues but has instead relied only on the...

Slackware Linux 15.0 / current gnutls Multiple Vulnerabilities (SSA:2024-016-01)

The version of gnutls installed on the remote host is prior to 3.8.3. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-016-01 advisory. - A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from...

[slackware-security] Slackware 15.0 kernel

New kernel packages are available for Slackware 15.0 to fix bugs and security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/linux-5.15.145/: Upgraded. These updates fix various bugs and security issues. Thanks to jwoithe for the PCI fix! Be sure to upgrade your...

Slackware: Security Advisory (SSA:2023-359-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-356-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware Linux 15.0 kernel-generic Multiple Vulnerabilities (SSA:2023-359-01)

The version of kernel-generic installed on the remote host is prior to 5.15.145 / 5.15.145smp. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-359-01 advisory. - An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an...

[slackware-security] postfix

New postfix packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/postfix-3.6.13-i586-1slack15.0.txz: Upgraded. Security: this release adds support to defend against an email spoofing attack SMTP...

Slackware Linux 15.0 / current postfix Vulnerability (SSA:2023-356-01)

The version of postfix installed on the remote host is prior to 3.6.13 / 3.8.4. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-356-01 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

Slackware: Security Advisory (SSA:2023-354-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] proftpd

New proftpd packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/proftpd-1.3.8b-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: modsftp: implemented mitigation...

Slackware: Security Advisory (SSA:2023-353-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-353-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-353-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current proftpd Vulnerability (SSA:2023-354-01)

The version of proftpd installed on the remote host is prior to 1.3.8b. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-354-01 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacker...