1873 matches found
samba
New samba packages are available for Slackware 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.4-i486-1slack14.1.txz: Upgraded. This update fixes a heap-based buffer overflow that may allow AD domain controllers to...
[slackware-security] dbus
New dbus packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/dbus-1.4.20-i486-4slack14.0.txz: Rebuilt. This update fixes a security issue where misuse of valist could be used to cause a denial of...
[slackware-security] curl
New curl packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/curl-7.29.0-i486-3slack14.0.txz: Rebuilt. This fixes a minor security issue where a decode buffer...
[slackware-security] ruby
New ruby packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/ruby-1.9.3p327-i486-1slack14.0.txz: Upgraded. This release fixes a hash-flooding DoS vulnerability and many other bugs. Fo...
[slackware-security] samba
New samba packages are available for Slackware 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/samba-3.5.10-i486-1slack13.37.txz: Upgraded. Fixed cross-site request forgery and cross-site scripting vulnerability in SWAT t...
[slackware-security] bind
New bind packages are available for Slackware 13.37, and -current to fix a security issue. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/bind-9.7.3P3-i486-1slack13.37.txz: Upgraded. A specially constructed packet will cause BIND 9 "named" to exit, affecting DNS service...
[slackware-security] openssl
New openssl packages are available for 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/openssl-0.9.8r-i486-1slack13.1.txz: Upgraded. This OpenSSL update fixes an "OCSP stapling vulnerability". For...
[slackware-security] poppler
New poppler packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/poppler-0.12.4-i486-2slack13.1.txz: Rebuilt. This updated package includes patches based on xpdf 3.02pl5. Fo...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/pidgin-2.7.3-i486-1slack13.1.txz: Upgraded. This fixes a crash due to malformed X-Status messages. For more...
fetchmail
New fetchmail packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to a fix security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-2666 Here are the...
xterm
New xterm packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-2383 Here are the details from the Slackware 12.2 ChangeLog:...
[slackware-security] python
New python packages are available for Slackware 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1679 https://vulners.com/cve/CVE-2008-1721...
[slackware-security] samba
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix a security issue: "Specifically crafted SMB responses can result in a heap overflow in the Samba client code. Because the server process, smbd, can itself act as a client during operations such ...
[slackware-security] samba
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix a security issue. A boundary failure in GETDC mailslot processing can result in a buffer overrun leading to possible code execution. More details about the issue will become available in the Common...
[slackware-security] openssh
New openssh packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, and 12.0 to fix a possible security issue. This version should also provide increased performance with certain ciphers. More details about this issue may be found in the Common Vulnerabilities and Exposures CV...
[slackware-security] bind
New bind packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix denial of service security issues. Versions of bind-9.2.x older than bind-9.2.8, and versions of bind-9.3.x older than 9.3.4 can be made to crash with malformed local or remote data. More details about...
[slackware-security] tar
New tar packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2006-6097 Here are the details from the Slackware 11.0...
[slackware-security] libtiff
New libtiff packages are available for Slackware 8.1, 9.0, 9.1, 10.1, and -current to fix security issues that could lead to application crashes, or possibly execution of arbitrary code. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...
[slackware-security] apache, mod_ssl, php
New apache and modssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix security issues. Apache has been upgraded to version 1.3.32 which fixes a heap-based buffer overflow in modproxy. modssl was upgraded from version modssl-2.8.19-1.3.31 to version 2.8.21-1.3.32 whic...
WU-FTPD Security Advisory
Upgraded WU-FTPD packages are available for Slackware 9.0 and - -current. These fix a problem where an attacker could use a specially crafted filename in conjunction with WU-FTPD's conversion feature mostly used to compress files, or produce tar archives to execute arbitrary commands on the serve...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.6.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] libssh
New libssh packages are available for Slackware 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libssh-0.10.6-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Command injection using proxycommand. Potential...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-10slack15.0.txz: Rebuilt. This update fixes two security issues: Out-of-bounds memory write in XKB butto...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.4.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] libvpx
New libvpx packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libvpx-1.12.0-i586-1slack15.0.txz: Upgraded. This release contains two security related fixes -- one each for VP8 and VP9. For more...
[slackware-security] openssl
New openssl packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssl-1.1.1u-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Possible DoS translating ASN.1 object identifiers...
[slackware-security] libssh
New libssh packages are available for Slackware 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libssh-0.10.5-i586-1slack15.0.txz: Upgraded. This update fixes security issues: A NULL dereference during rekeying with algorit...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-102.7.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] libXpm
New libXpm packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libXpm-3.5.15-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Infinite loop on unclosed comments...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-102.5.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] expat
New expat packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/expat-2.5.0-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Fix heap use-after-free after...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0334-i586-1slack15.0.txz: Upgraded. Fixed use after free. Thanks to marav for the heads-up. For more information, see:...
[slackware-security] gzip
New gzip packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gzip-1.12-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: zgrep applied to a crafted file name wi...
[slackware-security] flac
New flac packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/flac-1.3.4-i586-1slack15.0.txz: Upgraded. This update fixes overflow issues with encoding and decoding. For more...
[slackware-security] mariadb
New mariadb packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mariadb-10.5.15-i586-1slack15.0.txz: Upgraded. This update fixes potential denial-of-service vulnerabilities. For more information,...
[slackware-security] mutt
New mutt packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mutt-1.10.1-i586-1slack14.2.txz: Upgraded. This update fixes bugs and security issues. Upstream strongly recommends that al...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/curl-7.56.0-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: libcurl may read outside of a heap allocate...
[slackware-security] sudo
New sudo packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/sudo-1.8.20p1-i586-1slack14.2.txz: Upgraded. This update fixes a potential overwrite of arbitrary syste...
[slackware-security] freetype
New freetype packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/freetype-2.6.3-i586-2slack14.2.txz: Rebuilt. This update fixes an out-of-bounds write caused by a...
[slackware-security] libgcrypt
New libgcrypt packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libgcrypt-1.7.3-i586-1slack14.2.txz: Upgraded. Fix critical security bug in the RNG CVE-2016-6313...
[slackware-security] imagemagick
New imagemagick packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/imagemagick-6.8.610-i486-3slack14.1.txz: Rebuilt. Removed popen support to prevent another shell vulnerability. This issu...
[slackware-security] grub
New grub packages are available for Slackware 14.1 and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/grub-2.00-i486-3slack14.1.txz: Rebuilt. Patched bug where password protection during system startup may be bypassed by hitting the...
[slackware-security] gnupg2
New gnupg2 packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/gnupg2-2.0.24-i486-1slack14.1.txz: Upgraded. This release includes a security fix to stop a denial of service using...
[slackware-security] bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/bind-9.9.5P1-i486-1slack14.1.txz: Upgraded. This fixes security issues and other bugs. Please note that the...
[slackware-security] mariadb
New mariadb packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mariadb-5.5.37-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements...
[slackware-security] httpd
New httpd packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/httpd-2.4.9-i486-1slack14.1.txz: Upgraded. This update addresses two security issues. Segfaults with truncated cookie logging...
mariadb, mysql
New mariadb and mysql packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mariadb-5.5.35-i486-1slack14.1.txz: Upgraded. This update fixes a buffer overflow in the mysql...
libssh
New libssh packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/libssh-0.5.4-i486-1slack14.0.txz: Upgraded. This update fixes a possible denial of service issue. For more information, see:...
bind
New bind packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/bind-9.9.2P2-i486-1slack14.0.txz: Upgraded. This update fixes a critical defect in BIND 9 that allows a...
ruby
New ruby packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/ruby-1.9.3p392-i486-1slack14.0.txz: Upgraded. This release includes security fixes about bundled JSON and REXML. For more...