[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.6.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.6.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

[slackware-security] libssh

New libssh packages are available for Slackware 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libssh-0.10.6-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Command injection using proxycommand. Potential...

Slackware Linux 14.2 / 15.0 / current libssh Multiple Vulnerabilities (SSA:2023-353-01)

The version of libssh installed on the remote host is prior to 0.10.6. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-353-01 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote...

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2023-353-03)

The version of mozilla-thunderbird installed on the remote host is prior to 115.6.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-353-03 advisory. - The signature of a digitally signed S/MIME email message may optionally specify the signature creation date...

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2023-353-02)

The version of mozilla-firefox installed on the remote host is prior to 115.6.0esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-353-02 advisory. - The WebGL DrawElementsInstanced method was susceptible to a heap buffer overflow when used on systems with th...

Slackware: Security Advisory (SSA:2023-348-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] bluez

New bluez packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bluez-5.71-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: It may have been possible for an attacker within Bluetoo...

Slackware: Security Advisory (SSA:2023-347-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware Linux 15.0 / current bluez Vulnerability (SSA:2023-348-01)

The version of bluez installed on the remote host is prior to 5.71. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-348-01 advisory. - Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connectio...

Slackware Linux 15.0 / current xorg-server Multiple Vulnerabilities (SSA:2023-347-01)

The version of xorg-server installed on the remote host is prior to 1.20.14 / 21.1.10 / 21.1.4 / 23.2.3. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-347-01 advisory. - A flaw was found in xorg-server. Querying or changing XKB button actions such as moving...

[slackware-security] xorg-server

New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-10slack15.0.txz: Rebuilt. This update fixes two security issues: Out-of-bounds memory write in XKB butto...

Slackware: Security Advisory (SSA:2023-343-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] libxml2

New libxml2 packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.12.2-i586-1slack15.0.txz: Upgraded. Add --sysconfdir=/etc option so that this can find the xml catalog...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current libxml2 Multiple Vulnerabilities (SSA:2023-343-01)

The version of libxml2 installed on the remote host is prior to 2.12.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-343-01 advisory. - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XMLPARSEHUGE parser...

Slackware: Security Advisory (SSA:2023-334-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] samba

New samba packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.18.9-i586-1slack15.0.txz: Upgraded. This is a security release in order to address the following defect: An information leak...

Slackware Linux 15.0 / current samba Vulnerability (SSA:2023-334-01)

The version of samba installed on the remote host is prior to 4.18.9 / 4.19.3. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-334-01 advisory. - An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an...

Slackware: Security Advisory (SSA:2023-328-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] vim

New vim packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.2127-i586-1slack15.0.txz: Upgraded. Fixed security issues. Thanks to marav for the heads-up. For more information, see:...