[slackware-security] sudo

New sudo packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/sudo-1.9.15-i586-1slack15.0.txz: Upgraded. The sudoers plugin has been modified to make it more resilient to ROWHAMME...

Slackware: Security Advisory (SSA:2023-299-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-299-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] xorg-server

New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-9slack15.0.txz: Rebuilt. This update fixes security issues: OOB write in...

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.4.1-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...

Slackware Linux 15.0 / current xorg-server Multiple Vulnerabilities (SSA:2023-299-02)

The version of xorg-server installed on the remote host is prior to 1.20.14 / 21.1.4 / 21.1.9 / 23.2.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-299-02 advisory. - A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an...

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2023-299-01)

The version of mozilla-thunderbird installed on the remote host is prior to 115.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-299-01 advisory. - It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the...

Slackware: Security Advisory (SSA:2023-297-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-297-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] vim

New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.2063-i586-1slack15.0.txz: Upgraded. Fixed use-after-free security issue. Thanks to marav for the heads-up. For more information,...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.4.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

Slackware Linux 15.0 / current vim Vulnerability (SSA:2023-297-02)

The version of vim installed on the remote host is prior to 9.0.2063. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-297-02 advisory. - Use After Free in GitHub repository vim/vim prior to v9.0.2010. CVE-2023-5535 Note that Nessus has not tested for this issue but has...

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2023-297-01)

The version of mozilla-firefox installed on the remote host is prior to 115.4.0esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-297-01 advisory. - It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the...

Slackware: Security Advisory (SSA:2023-295-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] LibRaw

New LibRaw packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/LibRaw-0.20.2-i586-4slack15.0.txz: Rebuilt. This update fixes security issues: A Buffer Overflow vulnerability was found in...

Slackware Linux 15.0 / current LibRaw Multiple Vulnerabilities (SSA:2023-295-01)

The version of LibRaw installed on the remote host is prior to 0.20.2 / 0.21.1. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-295-01 advisory. - Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the...

Slackware: Security Advisory (SSA:2023-292-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] httpd

New httpd packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/httpd-2.4.58-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: moderate: Apache HTTP Server...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current httpd Multiple Vulnerabilities (SSA:2023-292-01)

The version of httpd installed on the remote host is prior to 2.4.58. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-292-01 advisory. - modmacro buffer over-read: Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTT...

Slackware: Security Advisory (SSA:2023-290-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...