1893 matches found
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-102.5.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-102.4.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-4slack15.0.txz: Rebuilt. xkb: proof GetCountedString against request length attacks. xkb: fix some...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0334-i586-1slack15.0.txz: Upgraded. Fixed use after free. Thanks to marav for the heads-up. For more information, see:...
[slackware-security] flac
New flac packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/flac-1.3.4-i586-1slack15.0.txz: Upgraded. This update fixes overflow issues with encoding and decoding. For more...
[slackware-security] bind
New bind packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.11.36-i586-1slack14.2.txz: Upgraded. This update fixes bugs and the following security issue: The "lame-ttl" option...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-thunderbird-68.9.0-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] openssl
New openssl packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openssl-1.0.2u-i586-1slack14.2.txz: Upgraded. This update fixes a low severity security issue: Fixed an an overflow bug in the x8664...
[slackware-security] libtiff
New libtiff packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libtiff-4.0.9-i586-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more information, see:...
[slackware-security] expat
New expat packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/expat-2.2.2-i586-1slack14.2.txz: Upgraded. Fixes security issues including: External entity infinite lo...
[slackware-security] sudo
New sudo packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/sudo-1.8.20p1-i586-1slack14.2.txz: Upgraded. This update fixes a potential overwrite of arbitrary syste...
[slackware-security] curl
New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/curl-7.51.0-i586-1slack14.2.txz: Upgraded. This release fixes security issues: CVE-2016-8615: cookie...
[slackware-security] bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.10.4P2-i586-1slack14.2.txz: Upgraded. Fixed a security issue: getrrsetbyname with a non absolute...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.6.21-i486-1slack14.1.txz: Upgraded. This release fixes bugs and security issues. For more information, see:...
[slackware-security] openssh
New openssh packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssh-6.7p1-i486-1slack14.1.txz: Upgraded. This update fixes a security issue that allows remote servers...
mariadb, mysql
New mariadb and mysql packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mariadb-5.5.35-i486-1slack14.1.txz: Upgraded. This update fixes a buffer overflow in the mysql...
[slackware-security] php
New php packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/php-5.4.16-i486-1slack14.0.txz: Upgraded. This is a bugfix release. It also fixes a security issue -- a...
xorg-server
New xorg-server packages are available for Slackware 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/xorg-server-1.12.4-i486-1slack14.0.txz: Upgraded. This update fixes an input flush bug with evdev. Under exceptional...
[slackware-security] glibc
New glibc packages are available for Slackware 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/glibc-2.13-i486-6slack13.37.txz: Rebuilt. Patched multiple integer overflows in the strtod, strtof, strtold, and strtodl...
[slackware-security] php
New php packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix a security issue. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/php-5.3.15-i486-1slack13.37.txz: Upgraded. Fixed potential overflow in phpstreamscandir CVE-2012-2688...
[slackware-security] bind
New bind packages are available for Slackware 13.37, and -current to fix a security issue. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/bind-9.7.3P3-i486-1slack13.37.txz: Upgraded. A specially constructed packet will cause BIND 9 "named" to exit, affecting DNS service...
[slackware-security] kdelibs
A new kdelibs package is available for Slackware 13.1 to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/kdelibs-4.4.3-i486-2slack13.1.txz: Rebuilt. Patched CVE-2011-1168. For more information, see:...
[slackware-security] libtiff
New libtiff packages are available for Slackware 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/libtiff-3.9.4-i486-1slack13.1.txz: Upgraded. This fixes image structure...
fetchmail
New fetchmail packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to a fix security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-2666 Here are the...
[slackware-security] xine-lib
New xine-lib packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1482 Here are the details from the Slackware...
[slackware-security] httpd
New httpd packages are available for Slackware 12.0, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-6421 https://vulners.com/cve/CVE-2007-6422...
[slackware-security] samba
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix a security issue. A boundary failure in GETDC mailslot processing can result in a buffer overrun leading to possible code execution. More details about the issue will become available in the Common...
[slackware-security] tar
New tar packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2006-6097 Here are the details from the Slackware 11.0...
[slackware-security] openssl
New openssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix a signature forgery security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2006-433...
kdebase kdm local file reading vulnerability
New kdebase packages are available for Slackware 10.0, 10.1, 10.2, and -current to fix a security issue with KDM the KDE login manager which could be exploited by a local attacker to read any file on the system. The official KDE security advisory may be found here:...
[slackware-security] apache, mod_ssl, php
New apache and modssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix security issues. Apache has been upgraded to version 1.3.32 which fixes a heap-based buffer overflow in modproxy. modssl was upgraded from version modssl-2.8.19-1.3.31 to version 2.8.21-1.3.32 whic...
rsync update
New rsync packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. When running an rsync server without the chroot option it is possible for an attacker to write outside of the allowed directory. Any sites running rsync in that mode should upgrade right away and...
WU-FTPD Security Advisory
Upgraded WU-FTPD packages are available for Slackware 9.0 and - -current. These fix a problem where an attacker could use a specially crafted filename in conjunction with WU-FTPD's conversion feature mostly used to compress files, or produce tar archives to execute arbitrary commands on the serve...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-10slack15.0.txz: Rebuilt. This update fixes two security issues: Out-of-bounds memory write in XKB butto...
[slackware-security] libvpx
New libvpx packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libvpx-1.12.0-i586-1slack15.0.txz: Upgraded. This release contains two security related fixes -- one each for VP8 and VP9. For more...
[slackware-security] php
New php packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/php-7.4.33-i586-2slack15.0.txz: Rebuilt. This update fixes a security issue: PDO::quote may return unquoted string. For more information...
[slackware-security] expat
New expat packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/expat-2.5.0-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Fix heap use-after-free after...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0558-i586-1slack15.0.txz: Upgraded. Fixed use after free. Thanks to marav for the heads-up. For more information, see:...
[slackware-security] cups
New cups packages are available for Slackware 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/cups-2.4.2-i586-1slack15.0.txz: Upgraded. Fixed certificate strings comparison for Local authorization. For more information, se...
[slackware-security] mariadb
New mariadb packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mariadb-10.5.15-i586-1slack15.0.txz: Upgraded. This update fixes potential denial-of-service vulnerabilities. For more information,...
[slackware-security] openvpn
New openvpn packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openvpn-2.4.9-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: Fix illegal client float. Thanks to Le...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-firefox-68.5.0esr-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-thunderbird-60.7.1-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] ghostscript
New ghostscript packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ghostscript-9.24-i586-1slack14.2.txz: Upgraded. Patched multiple -dSAFER sandbox bypass vulnerabilities. Thanks to Tavis Ormandy...
[slackware-security] mutt
New mutt packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mutt-1.10.1-i586-1slack14.2.txz: Upgraded. This update fixes bugs and security issues. Upstream strongly recommends that al...
[slackware-security] gnupg2
New gnupg2 packages are available for Slackware 13.37, 14.0, 14.1, 14.2, and - -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/gnupg2-2.0.31-i586-1slack14.2.txz: Upgraded. Sanitize the diagnostic output of the original file name in verbos...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/curl-7.60.0-i586-1slack14.2.txz: Upgraded. This release contains security fixes: FTP: shutdown response buffer overflow RTS...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/php-5.6.35-i586-1slack14.2.txz: Upgraded. This update fixes a security issue where sensitive data belonging to other account...
[slackware-security] mariadb
New mariadb packages are available for Slackware 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mariadb-10.0.33-i586-1slack14.2.txz: Upgraded. This update fixes bugs and security issues. For more information, see:...
[slackware-security] mercurial
New mercurial packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mercurial-4.3.1-i586-1slack14.2.txz: Upgraded. Fixes security issues: Mercurial's symlink auditing was incomplete prio...