1873 matches found
[slackware-security] openssl
New openssl packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssl-1.0.1p-i486-1slack14.1.txz: Upgraded. This update fixes the following security issue: Alternative chains certificate...
[slackware-security] wpa_supplicant
New wpasupplicant packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/wpasupplicant-2.4-i486-1slack14.1.txz: Upgraded. This update fixes potential denial of service issues. For more...
[slackware-security] openvpn
New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openvpn-2.3.6-i486-1slack14.1.txz: Upgraded. This update fixes a security issue that allows remote...
[slackware-security] openssh
New openssh packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssh-6.6p1-i486-1slack14.1.txz: Upgraded. This update fixes a security issue when using environment...
[slackware-security] samba
New samba packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.6-i486-1slack14.1.txz: Upgraded. This update fixes two security issues: CVE-2013-4496: Samba versions 3.4.0 and above...
bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/bind-9.9.4P2-i486-1slack14.1.txz: Upgraded. This update fixes a defect in the handling of NSEC3-signed zones...
[slackware-security] openssh
New openssh packages are available for Slackware 14.1 and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssh-6.4p1-i486-1slack14.1.txz: Upgraded. sshd8: fix a memory corruption problem triggered during rekeying when an AES-GCM cipher...
[slackware-security] subversion
New subversion packages are available for Slackware 14.0 and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/subversion-1.7.13-i486-1slack14.0.txz: Upgraded. This update fixes a local privilege escalation vulnerability via symlink attack...
[slackware-security] hplip
New hplip packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/hplip-3.12.9-i486-2slack14.0.txz: Rebuilt. This update fixes a stack-based buffer overflow in the...
[slackware-security] ruby
New ruby packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/ruby-1.9.3p448-i486-1slack14.0.txz: Upgraded. This update patches a vulnerability in Ruby's SSL client that could allow...
[slackware-security] libxml2
New libxml2 packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/libxml2-2.8.0-i486-2slack14.0.txz: Rebuilt. Patched a heap-based buffer underflow in the...
[slackware-security] glibc
New glibc packages are available for Slackware 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/glibc-2.13-i486-6slack13.37.txz: Rebuilt. Patched multiple integer overflows in the strtod, strtof, strtold, and strtodl...
[slackware-security] apr/apr-util
New apr and apr-util packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix a security issue. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/apr-1.4.4-i486-1slack13.37.txz: Upgraded. This fixes a possible denial of service du...
[slackware-security] apr-util
New apr and apr-util packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/apr-1.3.12-i486-1slack13.1.txz: Upgraded...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix a security issue. Here are the details from the Slackware 13.0 ChangeLog: patches/packages/pidgin-2.7.0-i486-1slack13.0.txz: Upgraded. Upgraded to pidgin-2.7.0 and pidgin-encryption-3.1. The msnemoticonmsg...
[slackware-security] sudo
New sudo packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, and -current to fix security issues. Here are the details from the Slackware 13.0 ChangeLog: patches/packages/sudo-1.7.2p6-i486-1slack13.0.txz: Upgraded. This update fixes security issues...
[slackware-security] php
New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-3557 https://vulners.com/cve/CVE-2009-3558...
gnutls
New gnutls packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-1415 https://vulners.com/cve/CVE-2009-1416 Here are the...
[slackware-security] cups
New cups packages are available for Slackware 12.0, 12.1, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-3639 https://vulners.com/cve/CVE-2008-3640...
[slackware-security] rdesktop
New rdesktop packages are available for Slackware 11.0, 12.0, 12.1, and -current to fix a security issue caused by using rdesktop to connect to a malicious or compromised RDP server. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...
[slackware-security] xine-lib
New xine-lib packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. An overflow was found in the Speex decoder that could lead to a crash or possible execution of arbitrary code. Xine-lib = 1.1.12 was also found to be vulnerable to a stack-based...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 10.2, 11.0, 12.0, and -current to fix security issues. Slackware is not vulnerable to either of these in its default configuration, but watch out if you've enabled JavaScript. More information about the security issues may be found here...
[slackware-security] openssl
New openssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix a signature forgery security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2006-433...
[slackware-security] KOffice/KWord
New KOffice packages are available for Slackware 9.1, 10.0, 10.1, 10.2, and -current to fix a security issue with KWord. A buffer overflow in the RTF import functionality could result in the execution of arbitrary code. More details about this issue may be found in the Common Vulnerabilities and...
rsync update
New rsync packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. When running an rsync server without the chroot option it is possible for an attacker to write outside of the allowed directory. Any sites running rsync in that mode should upgrade right away and...
2.4.21 kernels available
Precompiled Linux 2.4.21 kernels and source packages are now available for Slackware 9.0 and -current. These provide an improved version of the ptrace fix that had been applied to 2.4.20 in Slackware 9.0 for example, command line options now appear correctly when root does 'ps ax', and fix a...
[slackware-security] libarchive
New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.5-i586-1slack15.0.txz: Upgraded. This update fixes the following security issues: fix multiple vulnerabilities...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.15.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] ffmpeg
New ffmpeg packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ffmpeg-4.4.5-i586-1slack15.0.txz: Upgraded. This update addresses several vulnerabilities in FFmpeg which could result in denial of service, or...
[slackware-security] less
New less packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/less-653-i586-1slack15.0.txz: Upgraded. This update patches a security issue: less through 653 allows OS command execution via a newlin...
[slackware-security] bluez
New bluez packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bluez-5.71-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: It may have been possible for an attacker within Bluetoo...
[slackware-security] libxml2
New libxml2 packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.12.2-i586-1slack15.0.txz: Upgraded. Add --sysconfdir=/etc option so that this can find the xml catalog...
[slackware-security] LibRaw
New LibRaw packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/LibRaw-0.20.2-i586-4slack15.0.txz: Rebuilt. This update fixes security issues: A Buffer Overflow vulnerability was found in...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.1897-i586-1slack15.0.txz: Upgraded. Fixed three use-after-free security issues. Thanks to marav for the heads-up. For more...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-102.9.1-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mo...
[slackware-security] php
New php packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/php-7.4.33-i586-2slack15.0.txz: Rebuilt. This update fixes a security issue: PDO::quote may return unquoted string. For more information...
[slackware-security] ruby
New ruby packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ruby-3.0.5-i586-1slack15.0.txz: Upgraded. This release includes a security fix: HTTP response splitting in CGI. For more information,...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-102.5.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0558-i586-1slack15.0.txz: Upgraded. Fixed use after free. Thanks to marav for the heads-up. For more information, see:...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-91.7.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/curl-7.71.0-i586-1slack14.2.txz: Upgraded. This update fixes security issues: curl overwrite local file with -J 111 Partial...
[slackware-security] sane
New sane packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/sane-1.0.30-i586-1slack14.2.txz: Upgraded. This update fixes several security issues. For more information, see:...
[slackware-security] Slackware 14.2 kernel
New kernel packages are available for Slackware 14.2 to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/linux-4.4.190/: Upgraded. These updates fix various bugs and a minor local denial-of-service security issue. They also change this option:...
[slackware-security] irssi
New irssi packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/irssi-1.1.3-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: Use after free when sending SASL login to...
[slackware-security] lftp
New lftp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/lftp-4.8.4-i586-1slack14.2.txz: Upgraded. It has been discovered that lftp up to and including version 4.8.3 does not...
[slackware-security] irssi
New irssi packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/irssi-1.0.6-i586-1slack14.2.txz: Upgraded. This update fixes multiple security vulnerabilities. For more information, see:...
[slackware-security] rpcbind
New rpcbind packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/rpcbind-0.2.4-i586-1slack14.2.txz: Upgraded. Patched a bug which can cause a denial of service through memory exhaustion. Thanks to...
[slackware-security] bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.10.5P2-i586-1slack14.2.txz: Upgraded. This update fixes a high severity security issue: An error ...
[slackware-security] mcabber
New mcabber packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/loudmouth-1.5.3-i586-1slack14.2.txz: Upgraded. This update is needed for the mcabber security update...
libidn
New libidn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libidn-1.33-i586-1slack14.2.txz: Upgraded. Fixed out-of-bounds read bugs. Fixed crashes on invalid...