[slackware-security] util-linux

New util-linux packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/util-linux-2.37.4-i586-2slack15.0.txz: Rebuilt. Copy /etc/pam.d/login to /etc/pam.d/remote. This is needed for /bin/login's '-h'...

Slackware Linux 15.0 / current util-linux Vulnerability (SSA:2023-290-01)

The version of util-linux installed on the remote host is prior to 2.37.4 / 2.39.2. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-290-01 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

Slackware: Security Advisory (SSA:2023-284-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-284-04)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware Linux 15.0 / current libcaca Vulnerability (SSA:2023-284-04)

The version of libcaca installed on the remote host is prior to 0.99.beta20. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-284-04 advisory. - libcaca is affected by a Divide By Zero issue via img2txt, which allows a remote malicious user to cause a Denial of Service...

Slackware: Security Advisory (SSA:2023-284-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-284-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] libcaca

New libcaca packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libcaca-0.99.beta20-i586-1slack15.0.txz: Upgraded. Fixed a crash bug a crafted file defining width of zero leads to divide by zero a...

[slackware-security] samba

New samba packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.18.8-i586-1slack15.0.txz: Upgraded. This is a security release in order to address the following defects: Unsanitized pipe name...

[slackware-security] nghttp2

New nghttp2 packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/nghttp2-1.57.0-i586-1slack15.0.txz: Upgraded. This release has a fix to mitigate the HTTP/2 Rapid Reset vulnerability. For more...

[slackware-security] curl

New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.4.0-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Cookie injection with none file. SOCKS5...

Slackware: Security Advisory (SSA:2023-283-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2023-283-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current curl Multiple Vulnerabilities (SSA:2023-284-01)

The version of curl installed on the remote host is prior to 8.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-284-01 advisory. - CVE-2023-38545 is a heap-based buffer overflow vulnerability in the SOCKS5 proxy handshake in libcurl and curl. When curl is...

[slackware-security] libnotify

New libnotify packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libnotify-0.8.3-i586-1slack15.0.txz: Upgraded. This release contains a critical stability/minor security update which affects...

[slackware-security] libcue

New libcue packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libcue-2.2.1-i586-4slack15.0.txz: Rebuilt. Fixed a bug which could allow memory corruption resulting in arbitrary code execution. For...

Slackware Linux 15.0 / current libcue Vulnerability (SSA:2023-283-01)

The version of libcue installed on the remote host is prior to 2.2.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-283-01 advisory. - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are vulnerable to out-of-bounds arr...

Slackware Linux 15.0 / current libnotify Vulnerability (SSA:2023-283-02)

The version of libnotify installed on the remote host is prior to 0.8.3. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-283-02 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

Slackware: Security Advisory (SSA:2023-279-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] netatalk

New netatalk packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/netatalk-3.1.18-i586-1slack15.0.txz: Upgraded. This update fixes bugs and a security issue: Harden createappledesktopfolder. For mo...