1879 matches found
ruby
New ruby packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-1904 Here are the details from the Slackware 12.2...
libpng
New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to fix a security issue. Jeff Phillips discovered an uninitialized-memory-read bug affecting interlaced images that may have security implications. More details about this issue m...
pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-1373 https://vulners.com/cve/CVE-2009-1374...
lcms
New lcms packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-0581...
[slackware-security] gnutls
New gnutls packages are available for Slackware 12.0, 12.1, and -current to fix a security issue. NOTE: The package for 12.0 has a different shared library soname, and the packages for 12.1 and -current have an API/ABI change. Only the Pidgin package in Slackware links with GnuTLS, and upgraded...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 12.1 and -current to fix security issues in xorg-server 1.4 prior to version 1.4.2. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1377...
[slackware-security] gnutls
New gnutls packages are available for Slackware 12.0, 12.1, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1948 https://vulners.com/cve/CVE-2008-1949...
[slackware-security] samba
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, and 12.0 to fix a security issue and various other bugs. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-4138 Here are the details from the...
[slackware-security] openssh
New openssh packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, and 12.0 to fix a possible security issue. This version should also provide increased performance with certain ciphers. More details about this issue may be found in the Common Vulnerabilities and Exposures CV...
[slackware-security] samba
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-2444 https://vulners.com/cve/CVE-2007-2446...
[slackware-security] ktorrent
New ktorrent packages are available for Slackware 11.0 and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-1384 https://vulners.com/cve/CVE-2007-1385 Here are the details from th...
[slackware-security] samba
New samba packages are available for Slackware 10.0, 10.1, 10.2, and 11.0 to fix a denial-of-service security issue. More details about the issues fixed in Samba 3.0.24 may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-0452...
[slackware-security] xine-lib
New xine-lib packages are available for Slackware 10.2 and -current to fix security issues. More details about these issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2005-4048 https://vulners.com/cve/CVE-2006-2802 Evidently there is also an...
OpenSSL
New OpenSSL packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix a security issue. Under certain conditions, an attacker acting as a "man in the middle" may force a client and server to fall back to the less-secure SSL 2.0 protocol. More details about this iss...
mod_ssl
New modssl packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. The packages were upgraded to modssl-2.8.18-1.3.31 fixing a buffer overflow that may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN, if modssl is...
rsync update fixes security problems
New rsync packages are available to fix security problems. Here's the information from the Slackware 8.0 ChangeLog: ---------------------------- Mon Mar 11 15:09:26 PST 2002 patches/packages/rsync.tgz: Upgraded to rsync-2.5.3. This fixes two security problems: Make sure that supplementary groups...
[slackware-security] curl
New curl packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.7.1-i586-1slack15.0.txz: Upgraded. This release fixes the following security issues: TLS certificate check bypass with mbedTLS...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.3.0-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: HTTP headers eat all memory...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.1.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] ntfs-3g
New ntfs-3g packages are available for Slackware 14.2 and 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ntfs-3g-2022.10.3-i586-1slack15.0.txz: Upgraded. Fixed vulnerabilities that may allow an attacker using a maliciously crafted...
[slackware-security] libssh
New libssh packages are available for Slackware 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libssh-0.10.5-i586-1slack15.0.txz: Upgraded. This update fixes security issues: A NULL dereference during rekeying with algorit...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.1146-i586-1slack15.0.txz: Upgraded. Fixed security issues: Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143...
[slackware-security] samba
New samba packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.15.12-i586-1slack15.0.txz: Upgraded. Fixed a security issue where Samba's Kerberos libraries and AD DC failed to guard against...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-4slack15.0.txz: Rebuilt. xkb: proof GetCountedString against request length attacks. xkb: fix some...
[slackware-security] gzip
New gzip packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gzip-1.12-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: zgrep applied to a crafted file name wi...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-91.6.1-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] ghostscript
New ghostscript packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ghostscript-9.24-i586-1slack14.2.txz: Upgraded. Patched multiple -dSAFER sandbox bypass vulnerabilities. Thanks to Tavis Ormandy...
[slackware-security] libX11
New libX11 packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libX11-1.6.6-i586-1slack14.2.txz: Upgraded. This update fixes some security issues: Fixed crash on invalid reply...
[slackware-security] ruby
New ruby packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ruby-2.2.9-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: Net::FTPget, getbinaryfile, gettextfile, put,...
[slackware-security] sudo
New sudo packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/sudo-1.8.20p1-i586-1slack14.2.txz: Upgraded. This update fixes a potential overwrite of arbitrary syste...
[slackware-security] bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.10.4P2-i586-1slack14.2.txz: Upgraded. Fixed a security issue: getrrsetbyname with a non absolute...
[slackware-security] pcre
New pcre packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/pcre-8.39-i486-1slack14.1.txz: Upgraded. This release fixes bugs including a couple of DoS security issues, and retrofits to PCRE1 some...
[slackware-security] libxslt
New libxslt packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/libxslt-1.1.29-i486-1slack14.1.txz: Upgraded. This release fixes bugs and a security issue: Fix for type confusion in...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.6.21-i486-1slack14.1.txz: Upgraded. This release fixes bugs and security issues. For more information, see:...
curl
New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/curl-7.35.0-i486-1slack14.1.txz: Upgraded. This update fixes a flaw where libcurl could, in some circumstance...
samba
New samba packages are available for Slackware 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.4-i486-1slack14.1.txz: Upgraded. This update fixes a heap-based buffer overflow that may allow AD domain controllers to...
[slackware-security] dbus
New dbus packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/dbus-1.4.20-i486-4slack14.0.txz: Rebuilt. This update fixes a security issue where misuse of valist could be used to cause a denial of...
[slackware-security] php
New php packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/php-5.4.16-i486-1slack14.0.txz: Upgraded. This is a bugfix release. It also fixes a security issue -- a...
xorg-server
New xorg-server packages are available for Slackware 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/xorg-server-1.12.4-i486-1slack14.0.txz: Upgraded. This update fixes an input flush bug with evdev. Under exceptional...
sudo
New sudo packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/sudo-1.8.6p7-i486-1slack14.0.txz: Upgraded. This update fixes security issues that could allow a user to...
[slackware-security] ruby
New ruby packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/ruby-1.9.3p327-i486-1slack14.0.txz: Upgraded. This release fixes a hash-flooding DoS vulnerability and many other bugs. Fo...
[slackware-security] samba
New samba packages are available for Slackware 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/samba-3.5.10-i486-1slack13.37.txz: Upgraded. Fixed cross-site request forgery and cross-site scripting vulnerability in SWAT t...
[slackware-security] bind
New bind packages are available for Slackware 13.37, and -current to fix a security issue. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/bind-9.7.3P3-i486-1slack13.37.txz: Upgraded. A specially constructed packet will cause BIND 9 "named" to exit, affecting DNS service...
[slackware-security] openssl
New openssl packages are available for 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/openssl-0.9.8r-i486-1slack13.1.txz: Upgraded. This OpenSSL update fixes an "OCSP stapling vulnerability". For...
[slackware-security] poppler
New poppler packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/poppler-0.12.4-i486-2slack13.1.txz: Rebuilt. This updated package includes patches based on xpdf 3.02pl5. Fo...
[slackware-security] httpd
New httpd packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/httpd-2.2.16-i486-1slack13.1.txz: Upgraded. Fix Handling of requests without a path segment. For more...
[slackware-security] libtiff
New libtiff packages are available for Slackware 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/libtiff-3.9.4-i486-1slack13.1.txz: Upgraded. This fixes image structure...
[slackware-security] kdebase-workspace
New kdebase-workspace packages are available for Slackware 13.0 and -current to fix a security issue with KDM. Here are the details from the Slackware 13.0 ChangeLog: patches/packages/kdebase-workspace-4.2.4-i486-2slack13.0.txz: Rebuilt. Patched a security issue with KDM. For more information, se...
openssl
New openssl packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a security issue when connecting to an SSL/TLS server that uses a certificate containing a DSA or ECDSA key. More details about this issue may be found here: http://www.openssl.org/news/secadv20090107.txt...
[slackware-security] python
New python packages are available for Slackware 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1679 https://vulners.com/cve/CVE-2008-1721...