1873 matches found
wu-ftpd advisory update
UPDATE: This announcement was first mailed out on 28-Sep-2000. It was later determined that incorrect 16-bit sums and 128-bit MD5 message digests were included in the announcement. The announcement below is identical to the one from yesterday, but it includes the correct verification data. We...
: xchat input validation bug fixed
An input validation bug was found to affect Slackware Linux 7.0, 7.1, and -current. The problem is described in detail at this site: http://www.securityfocus.com/bid/1601 Users of Slackware 7.0, 7.1, and -current are urged to upgraded to the xchat.tgz package available in the Slackware -current...
Perl root exploit in Slackware 7.1 & -current
A root exploit was found in the /usr/bin/suidperl5.6.0 program that shipped with the Slackware 7.1 perl.tgz package. It is recommended that all users of Slackware 7.1 and -current upgrade to the perl.tgz package available in the Slackware -current branch. ==================================== perl...
aaa_base not vulnerable
...
CA-99-13: minimal fix for Slackware 3.5 through 4.0
...
[slackware-security] httpd
New httpd packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/httpd-2.4.64-i586-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. The update resolves a range of issue...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-128.10.1esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-128.5.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.16.1-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For more informatio...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-firefox-68.9.0esr-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] wget
New wget packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/wget-1.20.2-i586-1slack14.2.txz: Upgraded. Fixed an unspecified buffer overflow vulnerability. Security fix Where to find the new...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-thunderbird-45.3.0-i586-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. F...
[slackware-security] mozilla-nss
New mozilla-nss packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-nss-3.19.2-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-thunderbird-31.6.0-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/seamonkey-2.31-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements. For more information, se...
[slackware-security] openssh
New openssh packages are available for Slackware 14.0, 14.1, and -current. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssh-6.7p1-i486-2slack14.1.txz: Rebuilt. Restored support for tcpwrappers that was dropped by upstream. Thanks to mancha. Where to find the new...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-firefox-24.8.1esr-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/seamonkey-2.26-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements. For more information, se...
seamonkey
New seamonkey packages are available for Slackware 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/seamonkey-2.17-i486-1slack14.0.txz: Upgraded. This update contains security fixes and improvements. For more information,...
mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/mozilla-thunderbird-17.0.4esr-i486-1slack14.0.txz: Upgraded. This release contains security fixes and...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/mozilla-firefox-16.0.1-i486-1slack14.0.txz: Upgraded. This update fixes a security vulnerability that could allow a...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 13.37 and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: This release contains security fixes and improvements. For more information, see:...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 13.0 and 13.1 to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/mozilla-firefox-3.6.16-i686-1.txz: Upgraded. This release fixes a security vulnerability by blacklisting several invalid HTTPS...
mozilla-firefox
A new mozilla-firefox package is available for Slackware 12.2 to fix security issues. The updated packages may also be used with Slackware 11.0 or newer. More details about the issues may be found on the Mozilla website: http://www.mozilla.org/security/known-vulnerabilities/firefox30.html Here ar...
mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 10.2, 11.0, 12.0, 12.1, 12.2, and -current to fix security issues. More details about the issues may be found here: http://www.mozilla.org/security/known-vulnerabilities/thunderbird20.html Here are the details from the Slackware 12.2...
mozilla-firefox
New mozilla-firefox packages are available for Slackware 12.2, and -current to fix security issues. The new packages may also be used with earlier versions of Slackware. More details about the issues may be found on the Mozilla website:...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. More details may be found on the Mozilla web site: http://www.mozilla.org/security/known-vulnerabilities/firefox20.html Or, for Slackware -current using Firefox 3.0.x:...
[slackware-security] gnutls
New gnutls packages are available for Slackware 12.0, 12.1, and -current to correctly fix the certificate chain verification issue that the upgrade to gnutls-2.6.1 attempted to fix. Without this upgrade, processing a certificate chain containing only one self-signed certificate may cause GnuTLS...
[slackware-security] php
New php packages are available for Slackware 10.2 and 11.0 to fix security issues. These releases are the last to contain PHP 4.4.x, which was upgraded to version 4.4.9 to fix PCRE issues and other bugs. Please note that this is the FINAL release of PHP4, and it has already passed the announced...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 10.2, 11.0, 12.0, and 12.1 to fix security issues. More details about the issues may be found on the Mozilla site: http://www.mozilla.org/projects/security/known-vulnerabilities.htmlfirefox Here are the details from the Slackware 12.1...
[slackware-security] firefox
New mozilla-firefox packages are available for Slackware 10.2, 11.0, 12.0, and -current to fix security issues. Here are the details from the Slackware 12.0 ChangeLog: patches/packages/mozilla-firefox-2.0.0.10-i686-1.tgz: Upgraded to firefox-2.0.0.10. This upgrade fixes some more security bugs. F...
[slackware-security] firefox, seamonkey
New mozilla-firefox packages are available for Slackware 10.2, 11.0, 12.0, and -current to fix security issues. New seamonkey updates are available for Slackware 11.0, 12.0, and -current to address similar issues. Here are the details from the Slackware 12.0 ChangeLog:...
SSA-2006-1110030528
The original advisory for this issue contained incorrect URLs for the Slackware 11.0 patches. Sorry about that! The URLs for the 10.2 packages were correct and the Firefox/Thunderbird links given for 11.0 would have been just fine anyway since 10.2 and 11.0 are using the same packages for those...
[fixed URLs] firefox/thunderbird/seamonkey
The original advisory for this issue contained incorrect URLs for the Slackware 11.0 patches. Sorry about that! The URLs for the 10.2 packages were correct and the Firefox/Thunderbird links given for 11.0 would have been just fine anyway since 10.2 and 11.0 are using the same packages for those...
xine-lib
New xine-lib packages are available for Slackware 10.0, 10.1, and -current to fix security issues. The xine frontends have also been upgraded. For more details on the xine-lib security issues, see: http://xinehq.de/index.php/security/XSA-2004-8 Here are the details from the Slackware 10.1...
alternate samba package for Slackware 10.0
It was pointed out that the new Samba packages for Slackware 10.0 and -current have a dependency on libattr.so that wasn't in the previous packages. Since it's not the intent to introduce new requirements in security patches especially for stable versions, an alternate version of the samba packag...
xine-lib update
New xine-lib packages are available for Slackware 9.1 and -current to fix a security issue where playing a specially crafted Real RTSP stream could run malicious code as the user playing the stream. More details about this issue may be found in this advisory:...
OpenSSL security update
Upgraded OpenSSL packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix problems with ASN.1 parsing which could lead to a denial of service. It is not known whether the problems could lead to the running of malicious code on the server, but it has not been ruled out. We...
OpenSSH Security Advisory
Upgraded OpenSSH packages are available for Slackware 8.1, 9.0 and - -current. These fix a buffer management error found in versions of OpenSSH earlier than 3.7. The possibility exists that this error could allow a remote exploit, so we recommend all sites running OpenSSH upgrade to the new OpenS...
inetd DoS patched
Upgraded inetd packages are available for Slackware 8.1, 9.0 and - -current. These fix a previously hard-coded limit of 256 connections-per-minute, after which the given service is disabled for ten minutes. An attacker could use a quick burst of connections every ten minutes to effectively disabl...
GDM security update
Upgraded gdm packages are available for Slackware 9.0 and -current. These fix a security issue where a local user may use GDM to read any file on the system. Here are the details from the Slackware 9.0 ChangeLog: Sun Aug 24 14:36:29 PDT 2003 patches/packages/gdm-2.4.1.6-i386-1.tgz: Upgraded to...
REVISED quotacheck security fix in rc.M
NOTE: The original advisory quotes a section of the Slackware ChangeLog which had inadvertently reversed the options to quotacheck. The correct option to use is 'm'. A corrected advisory follows: An upgraded sysvinit package is available which fixes a problem with the use of quotacheck in...
SSA-2002-1121054101
...
OpenSSH security problem fixed
New openssh packages are available to fix security problems. Here's the information from the Slackware 8.0 ChangeLog: ---------------------------- Thu Mar 7 12:00:18 PST 2002 patches/packages/openssh.tgz: Upgraded to openssh-3.1p1. This fixes a security problem in the openssh package. All sites...
rsync update fixes security problems
New rsync packages are available to fix a security problem. Here's the information from the Slackware 8.0 ChangeLog: Fri Jan 25 14:25:51 PST 2002 patches/packages/rsync.tgz: Fixed a security hole by upgrading to rsync-2.4.8pre1. This is the relevant information from the rsync NEWS file: SECURITY...
libtermcap buffer overflow
...
[slackware-security] libxslt
New libxslt packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxslt-1.1.44-i586-1slack15.0.txz: Upgraded. This update addresses some security issues: CVE-2025-9714 Fix: Was a false positive,...
[slackware-security] httpd
New httpd packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/httpd-2.4.65-i586-1slack15.0.txz: Upgraded. This release fixes bugs and the following security issues: HTTP/2 DoS by Memory Increase...
[slackware-security] libxml2
New libxml2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.9-i586-4slack15.0.txz: Rebuilt. This update fixes an integer overflow wraparound vulnerability in the xmlBuildQName...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/seamonkey-2.53.21-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more information, see:...