1873 matches found
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-firefox-68.12.0esr-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] libXres
New libXres packages are available for Slackware 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libXres-1.2.0-i586-1slack14.2.txz: Upgraded. Integer overflows may allow X servers to trigger allocation of insufficient memo...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.6.20-i486-1slack14.1.txz: Upgraded. This release fixes bugs and security issues. For more information, see:...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/seamonkey-2.33.1-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements. For more information,...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-firefox-31.6.0esr-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] gnupg2
New gnupg2 packages are available for Slackware 13.37, 14.0, and -current to fix security issues. These packages will require the updated libgpg-error package. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/gnupg2-2.0.22-i486-1slack14.0.txz: Upgraded. Fixed possible...
[slackware-security] poppler
New poppler packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/poppler-0.20.2-i486-2slack14.0.txz: Rebuilt. Sanitize error messages to remove escape sequences that could be used to exploit...
[slackware-security] dhcpcd
New dhcpcd packages are available for Slackware 13.0, 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/dhcpcd-5.2.12-i486-1slack13.37.txz: Upgraded. Sanitize the host name provided by the DHCP server to insure that it does...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix denial of service issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2010-0277 https://vulners.com/cve/CVE-2010-0420...
mozilla-firefox
New mozilla-firefox packages are available for Slackware 12.2, and -current to fix security issues. The new packages may also be used with earlier versions of Slackware. More details about the issues may be found on the Mozilla website:...
[slackware-security] php
New PHP5 packages are available for Slackware 10.1, 10.2, 11.0, and 12.0 to fix "several low priority security bugs." Note that PHP5 was not officially supported in Slackware 10.1 or 10.2 being in the /testing directory, and was not the default version of PHP for Slackware 11.0 being in the /extr...
[slackware-security] kdelibs
New kdelibs packages are available for Slackware 10.0, 10.1, and 10.2 to fix a security issue with kjs. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2006-0019 Additional information may be found on the KDE website...
Mozilla/Firefox
New Mozilla and Firefox packages are available for Slackware 10.0, 10.1, 10.2, and -current to fix security issues: MFSA 2005-59 Command-line handling on Linux allows shell execution MFSA 2005-58 Firefox 1.0.7 / Mozilla Suite 1.7.12 Vulnerability Fixes MFSA 2005-57 IDN heap overrun using...
GAIM security update
GAIM is a GTK2-based Instant Messaging IM client. New GAIM packages are available for Slackware 9.0, 9.1, and -current. 12 vulnerabilities were found in the instant messenger GAIM that allow remote compromise. All sites using GAIM should upgrade to these new packages. These are based on GAIM 0.75...
buffer overflow fix for NTP
The version of xntp3 that shipped with Slackware 7.1 as well as the version that was in Slackware -current contains a buffer overflow bug that could lead to a root compromise. Slackware 7.1 and Slackware -current users are urged to upgrade to the new packages available for their release. The...
[slackware-security] kernel
New kernel packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/linux-5.15.204/kernel-generic-5.15.204-i586-1.txz: Upgraded. This update fixes a critical security issue: An out-of-bounds write in t...
[slackware-security] libarchive
New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.8-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: tar reader: Handle truncation in the...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-128.4.0esr-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For...
[slackware-security] libpcap
New libpcap packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libpcap-1.10.5-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Clean up sockinitaddress and its callers to avoid...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-12slack15.0.txz: Rebuilt. This update fixes security issues: Heap buffer overread/data leakage in...
[slackware-security] libnotify
New libnotify packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libnotify-0.8.3-i586-1slack15.0.txz: Upgraded. This release contains a critical stability/minor security update which affects...
[slackware-security] netatalk
New netatalk packages are available for Slackware 14.1, 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/netatalk-3.1.17-i586-1slack15.0.txz: Upgraded. This update fixes bugs and a security issue: Validate data type in...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-102.12.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] irssi
New irssi packages are available for Slackware 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/irssi-1.4.4-i586-1slack15.0.txz: Upgraded. Do not crash Irssi when one line is printed as the result of another line being...
[slackware-security] openssh
New openssh packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssh-9.3p1-i586-1slack15.0.txz: Upgraded. This release contains fixes for a security problem and a memory safety problem. The memo...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0396-i586-1slack15.0.txz: Upgraded. Fixed use after free. Thanks to marav for the heads-up. For more information, see:...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-91.12.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-thunderbird-68.1.0-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] libevent
New libevent packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/libevent-2.0.22-i486-1slack14.1.txz: Upgraded. Multiple integer overflows in the evbuffer API allow context-dependent attackers to...
[slackware-security] libssh
New libssh packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/libssh-0.7.3-i486-1slack14.1.txz: Upgraded. Fixed weak key generation. Due to a bug in the ephemeral secret key generation for...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.1 to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-firefox-31.3.0esr-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For more information, see:...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/seamonkey-2.29.1-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements. For more information,...
[slackware-security] sudo
New sudo packages are available for Slackware 13.0, 13.1, and 13.37 to fix a security issue. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/sudo-1.7.10p8-i486-1slack13.37.txz: Upgraded. This update fixes a security issue where if the envreset option is disabled in the...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.2, 13.0, 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/pidgin-2.10.6-i486-1slack13.37.txz: Upgraded. Fixes a security issue for users of MXit: Incorrect handing of inli...
[slackware-security] apr/apr-util
New apr and apr-util packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix a security issue in apr and a crash bug in apr-util. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/apr-1.4.5-i486-1slack13.37.txz: Upgraded. This...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/mozilla-firefox-3.6.4-i686-1.txz: Upgraded. This fixes some security issues. For more information, see:...
seamonkey
New seamonkey packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix security issues. More details about the issues may be found on the Mozilla web site: http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html Here are the details from the Slackware 12.2...
[slackware-security] pan
New pan packages are available for Slackware 12.0, 12.1, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-2363 Here are the details from the Slackware 12.1 ChangeLog:...
[slackware-security] kdebase, kdelibs
New kdebase packages are available for Slackware 12.0 to fix security issues. A long URL padded with spaces could be used to display a false URL in Konqueror's addressbar, and KDM when used with no-password login could be tricked into logging a different user in without a password. This is not th...
[slackware-security] gimp
New gimp packages are available for Slackware 10.2, 11.0, and 12.0 to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-2949 Here are the details from the Slackware 12.0 ChangeLog:...
[slackware-security] qt
New qt packages are available for Slackware 10.0, 10.1, 10.2, and 11.0 to fix a possible security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2006-4811 Trolltech has put out a press release which may be...
util-linux umount privilege escalation
New util-linux packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue with umount. A bug in the '-r' option could allow flags in /etc/fstab to be improperly dropped on user-mountable volumes, allowing a user to gain root privileges. For more details,...
[slackware-security] perl
New perl packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/perl-5.34.3-i586-1slack15.0.txz: Upgraded. This update fixes bugs and a security issue: Heap-buffer-overflow with tr// Also upgraded Pe...
[slackware-security] libarchive
New libarchive packages are available for Slackware 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.6.2-i586-1slack15.0.txz: Upgraded. This is a bugfix and security release. Relevant bugfixes: rar5 reader...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0417-i586-1slack15.0.txz: Upgraded. Fixed null pointer dereference. Thanks to marav for the heads-up. For more information, see:...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-3slack15.0.txz: Rebuilt. xkb: switch to array index loops to moving pointers. xkb: add request length...
[slackware-security] kdelibs
New kdelibs packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/kdelibs-4.14.38-i586-1slack14.2.txz: Upgraded. kconfig: malicious .desktop files and others would execute code. For more information...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/xorg-server-1.14.3-i486-3slack14.1.txz: Rebuilt. This update fixes many security issues discovered by Ilja van Sprundel, a securi...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 14.0 and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/seamonkey-2.21-i486-1slack14.0.txz: Upgraded. This update contains security fixes and improvements. For more information, see:...
[slackware-security] httpd
New httpd packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current. These have been compiled against the new versions of apr and apr-util, which were upgraded to fix a security issue that affects Apache httpd. It is recommended that all three updates be applied. Here...