1893 matches found
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-firefox-68.5.0esr-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] ghostscript
New ghostscript packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ghostscript-9.24-i586-1slack14.2.txz: Upgraded. Patched multiple -dSAFER sandbox bypass vulnerabilities. Thanks to Tavis Ormandy...
[slackware-security] mutt
New mutt packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mutt-1.10.1-i586-1slack14.2.txz: Upgraded. This update fixes bugs and security issues. Upstream strongly recommends that al...
[slackware-security] gnupg2
New gnupg2 packages are available for Slackware 13.37, 14.0, 14.1, 14.2, and - -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/gnupg2-2.0.31-i586-1slack14.2.txz: Upgraded. Sanitize the diagnostic output of the original file name in verbos...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/php-5.6.35-i586-1slack14.2.txz: Upgraded. This update fixes a security issue where sensitive data belonging to other account...
[slackware-security] mariadb
New mariadb packages are available for Slackware 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mariadb-10.0.33-i586-1slack14.2.txz: Upgraded. This update fixes bugs and security issues. For more information, see:...
[slackware-security] mercurial
New mercurial packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mercurial-4.3.1-i586-1slack14.2.txz: Upgraded. Fixes security issues: Mercurial's symlink auditing was incomplete prio...
[slackware-security] irssi
New irssi packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/irssi-1.0.4-i586-1slack14.2.txz: Upgraded. This release fixes two remote crash issues as well as a few bugs. For more...
[slackware-security] irssi
New irssi packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/irssi-1.0.3-i586-1slack14.2.txz: Upgraded. Fixed security issues that may result in a denial of service...
[slackware-security] Linux kernel
New Linux kernel packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/linux-4.4.19/: Upgraded. A flaw was found in the implementation of the Linux kernels handling of networking challenge ack where...
libidn
New libidn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libidn-1.33-i586-1slack14.2.txz: Upgraded. Fixed out-of-bounds read bugs. Fixed crashes on invalid...
[slackware-security] mailx
New mailx packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mailx-12.5-i486-2slack14.1.txz: Rebuilt. Drop SSLv2 support no longer supported by OpenSSL, and fix security...
[slackware-security] bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/bind-9.9.8P3-i486-1slack14.1.txz: Upgraded. This release fixes two possible denial-of-service issues: renderec...
[slackware-security] gnupg2
New gnupg2 packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/gnupg2-2.0.24-i486-1slack14.1.txz: Upgraded. This release includes a security fix to stop a denial of service using...
[slackware-security] httpd
New httpd packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/httpd-2.4.9-i486-1slack14.1.txz: Upgraded. This update addresses two security issues. Segfaults with truncated cookie logging...
[slackware-security] samba
New samba packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.6-i486-1slack14.1.txz: Upgraded. This update fixes two security issues: CVE-2013-4496: Samba versions 3.4.0 and above...
bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/bind-9.9.4P2-i486-1slack14.1.txz: Upgraded. This update fixes a defect in the handling of NSEC3-signed zones...
[slackware-security] subversion
New subversion packages are available for Slackware 14.0 and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/subversion-1.7.13-i486-1slack14.0.txz: Upgraded. This update fixes a local privilege escalation vulnerability via symlink attack...
[slackware-security] dbus
New dbus packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/dbus-1.4.20-i486-4slack14.0.txz: Rebuilt. This update fixes a security issue where misuse of valist could be used to cause a denial of...
libssh
New libssh packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/libssh-0.5.4-i486-1slack14.0.txz: Upgraded. This update fixes a possible denial of service issue. For more information, see:...
bind
New bind packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/bind-9.9.2P2-i486-1slack14.0.txz: Upgraded. This update fixes a critical defect in BIND 9 that allows a...
perl
New perl packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/perl-5.16.3-i486-1slack14.0.txz: Upgraded. This update fixes a flaw in the rehashing code that can be exploited to carry...
[slackware-security] libpng
New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/libpng-1.4.12-i486-1slack13.37.txz: Upgraded. Fixed incorrect...
[slackware-security] samba
New samba packages are available for Slackware 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/samba-3.5.10-i486-1slack13.37.txz: Upgraded. Fixed cross-site request forgery and cross-site scripting vulnerability in SWAT t...
[slackware-security] openssl
New openssl packages are available for 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/openssl-0.9.8r-i486-1slack13.1.txz: Upgraded. This OpenSSL update fixes an "OCSP stapling vulnerability". For...
[slackware-security] poppler
New poppler packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/poppler-0.12.4-i486-2slack13.1.txz: Rebuilt. This updated package includes patches based on xpdf 3.02pl5. Fo...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/pidgin-2.7.3-i486-1slack13.1.txz: Upgraded. This fixes a crash due to malformed X-Status messages. For more...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix a security issue. Here are the details from the Slackware 13.0 ChangeLog: patches/packages/pidgin-2.7.0-i486-1slack13.0.txz: Upgraded. Upgraded to pidgin-2.7.0 and pidgin-encryption-3.1. The msnemoticonmsg...
[slackware-security] httpd
New httpd packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-3094 https://vulners.com/cve/CVE-2009-3095 Here are the...
xterm
New xterm packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-2383 Here are the details from the Slackware 12.2 ChangeLog:...
[slackware-security] cups
New cups packages are available for Slackware 12.0, 12.1, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-3639 https://vulners.com/cve/CVE-2008-3640...
[slackware-security] rdesktop
New rdesktop packages are available for Slackware 11.0, 12.0, 12.1, and -current to fix a security issue caused by using rdesktop to connect to a malicious or compromised RDP server. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...
[slackware-security] espgs/ghostscript
New espgs or ghostscript packages are available for 11.0, 12.0, and -current to fix a buffer overflow. Here are the details from the Slackware 12.0 ChangeLog: patches/packages/espgs-8.15.4-i486-3slack12.0.tgz: This patched version of ESP Ghostscript fixes a buffer overflow. For more information o...
[slackware-security] sendmail
New sendmail packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix a security issue. Sendmail's advisory concerning this issue may be found here: http://www.sendmail.com/company/advisory/index.shtml This issue will appear in the Common Vulnerabilities and...
[slackware-security] KOffice/KWord
New KOffice packages are available for Slackware 9.1, 10.0, 10.1, 10.2, and -current to fix a security issue with KWord. A buffer overflow in the RTF import functionality could result in the execution of arbitrary code. More details about this issue may be found in the Common Vulnerabilities and...
mod_ssl
New modssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue. If "SSLVerifyClient optional" was configured in the global section of the config file, it could improperly override "SSLVerifyClient require" in a per-location section. More details...
kdelibs
New kdelibs packages are available for Slackware 9.0, 9.1 and -current to fix security issues with URI handling. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0411 Here are the details fr...
tcpdump denial of service
Upgraded tcpdump packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix denial-of-service issues. Sites using tcpdump should upgrade to the new packages. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...
Kernel security update
New kernels are available for Slackware 9.0, 9.1 and -current. The 9.1 and -current kernels have been upgraded to 2.4.24, and a fix has been backported to the 2.4.21 kernels in Slackware 9.0 to fix a bounds-checking problem in the kernel's mremap call which could be used by a local attacker to ga...
[slackware-security] php
New php packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/php81/php81-8.1.32-i586-1slack15.0.txz: Upgraded. This update fixes security issues: LibXML: libxml streams use wrong content-type header when...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.13.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] cups
New cups packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/cups-2.4.9-i586-1slack15.0.txz: Upgraded. This update fixes bugs and a security issue: When starting the cupsd server with a Listen...
[slackware-security] openjpeg
New openjpeg packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openjpeg-2.5.1-i586-1slack15.0.txz: Upgraded. Fixed a heap-based buffer overflow in openjpeg in color.c:379:42 in sycc420torgb when...
[slackware-security] libxml2
New libxml2 packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.7-i586-1slack15.0.txz: Upgraded. Fix the following security issue: xmlreader: Don't expand XIncludes when backtracking...
[slackware-security] libssh
New libssh packages are available for Slackware 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libssh-0.10.6-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Command injection using proxycommand. Potential...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.5.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.1897-i586-1slack15.0.txz: Upgraded. Fixed three use-after-free security issues. Thanks to marav for the heads-up. For more...
[slackware-security] openssl
New openssl packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssl-1.1.1u-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Possible DoS translating ASN.1 object identifiers...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-102.11.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mo...
[slackware-security] libXpm
New libXpm packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libXpm-3.5.15-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Infinite loop on unclosed comments...