1873 matches found
[slackware-security] mariadb / mysql
New mariadb or mysql packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mariadb-10.0.27-i586-1slack14.2.txz: Upgraded. This update fixes a critical vulnerability which can allow loca...
[slackware-security] samba
New samba packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.2.11-i486-1slack14.1.txz: Upgraded. This update fixes the security issues known as "badlock" or "sadlock", which may all...
[slackware-security] xpdf
New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/xpdf-3.02pl5-i486-1slack13.1.txz: Upgraded. This update fixes security issues that...
[slackware-security] bind
New bind packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, and -current to address a security problem. More details may be found at the following links: http://www.isc.org/sw/bind/bind-security.php http://www.kb.cert.org/vuls/id/800113...
[slackware-security] php
New php packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. Note that PHP5 is not the default PHP for Slackware 10.2 or 11.0 those use PHP4, so if your PHP code is not ready for PHP5, don't upgrade until it is or you'll by definition run into problems...
[slackware-security] bzip2
New bzip2 packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix a DoS issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-1372 Here are the details from the...
[slackware-security] libpng
New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. More details about these issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-5266...
[slackware-security] java (jre, jdk)
Sun has released security advisories pertaining to both the Java Runtime Environment and the Standard Edition Development Kit. One such advisory may be found here: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1 Updated versions of both the jre and jdk packages are provided whic...
[slackware-security] bind
New bind packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix security issues. The minimum OpenSSL version was raised to OpenSSL 0.9.7l and OpenSSL 0.9.8d to avoid exposure to known security flaws in older versions these patches were already issued for Slackware. ...
slackware-current security updates
This advisory summarizes recent security fixes in Slackware -current. Usually security advisories are not issued on problems that exist only within the test version of Slackware slackware-current, but since it's so close to being released as Slackware 10.2, and since there have been several...
PHP
New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue with the PEAR XMLRPC class that allows a remote attacker to run arbitrary PHP code. Sites that make use of this PHP library should upgrade to the new PHP package right away, or may instead...
apache
New apache packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix security issues. These include a possible denial-of-service attack as well as the ability to possible pipe shell escapes through Apache's errorlog which could create an exploit if the error log is read in a termina...
XFree86 security update
New XFree86 base packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix overflows which could possibly be exploited to gain unauthorized root access. All sites running XFree86 should upgrade to the new package. More details about these issues may be found in the Common...
[slackware-security] curl
New curl packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.12.0-i586-1slack15.0.txz: Upgraded. This release fixes the following security issues: gzip integer overflow eventfd double close...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.0.1-i586-1slack15.0.txz: Upgraded. This update fixes security issues: SSH connection too eager reuse still. HS...
[slackware-security] php
New php packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/php-7.4.32-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: phar wrapper: DOS when using quine gzip file. Don't...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-91.10.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-firefox-68.8.0esr-i686-1slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more...
[slackware-security] ppp
New ppp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ppp-2.4.8-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: By sending an unsolicited EAP packet to a...
[slackware-security] samba
New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/samba-4.6.16-i586-2slack14.2.txz: Rebuilt. This update patches some security issues: CVE-2018-14629: Unprivileged adding o...
[slackware-security] bind
New bind packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.10.8-i586-1slack14.2.txz: Upgraded. This update fixes security issues: Fixed a bug where extraordinarily large zone...
[slackware-security] Slackware 14.0 kernel
New kernel packages are available for Slackware 14.0 to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/linux-3.2.90/: Upgraded. This kernel fixes security issues including "Stack Clash". The issues may result in denial-of-service conditions or may...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/php-5.6.29-i586-1slack14.2.txz: Upgraded. This release fixes bugs and security issues. For more information, see:...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.6.17-i486-1slack14.1.txz: Upgraded. This release fixes bugs and security issues. IMPORTANT: READ BELOW ABOUT POTENTIALLY...
[slackware-security] mozilla-nss
New mozilla-nss packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-nss-3.20.1-i486-1slack14.1.txz: Upgraded. Upgraded to nss-3.20.1 and nspr-4.10.10. This release contains security...
openssl
New openssl packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssl-1.0.1f-i486-1slack14.1.txz: Upgraded. This update fixes the following security issues: Fix for TLS record tampering bu...
[slackware-security] samba
New samba packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/samba-3.6.17-i486-1slack14.0.txz: Upgraded. This update fixes missing integer wrap protection in an EA list reading that...
samba
New samba packages are available for Slackware 12.2 and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2009-0022 Here are the details from the Slackware 12.2 ChangeLog:...
[slackware-security] Qt
New Qt packages are available for Slackware 9.0, 9.1, 10.0, and -current to fix security issues. Bugs in the routines that handle PNG, BMP, GIF, and JPEG images may allow an attacker to cause unauthorized code to execute when a specially crafted image file is processed. These flaws may also cause...
[slackware-security] php
New php packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/php81/php81-8.1.29-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: Bypass of CVE-2012-1823, Argument Injection in PHP-CGI...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.9.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
[slackware-security] httpd
New httpd packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/httpd-2.4.58-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: moderate: Apache HTTP Server...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.2.2-i686-1slack15.0.txz: Upgraded. This release contains a security fix for a critical heap...
[slackware-security] kernel-firmware
New kernel-firmware packages are available for Slackware 14.2, 15.0, and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/kernel-firmware-2023072459fbffa-noarch-1.txz: Upgraded. AMD microcode updated to fix a use-after-free in AMD Zen2...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-8.1.0-i586-1slack15.0.txz: Upgraded. This update fixes security issues: more POST-after-PUT confusion. IDN...
[slackware-security] httpd
New httpd packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/httpd-2.4.56-i586-1slack15.0.txz: Upgraded. This update fixes two security issues: HTTP Response Smuggling...
[slackware-security] vim
New vim packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.1034-i586-1slack15.0.txz: Upgraded. This update fixes various security issues such as a heap-based buffer overflow and use after...
[slackware-security] samba
New samba packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.15.11-i586-1slack15.0.txz: Upgraded. This update fixes the following security issue: There is a limited write heap buffer...
[slackware-security] curl
New curl packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/curl-7.83.0-i586-1slack15.0.txz: Upgraded. This update fixes security issues: OAUTH2 bearer bypass in connection...
[slackware-security] Slackware 14.2 kernel
New kernel packages are available for Slackware 14.2 to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/linux-4.4.301/: Upgraded. These updates fix various bugs and security issues, including the recently announced i915 issue that could lead to...
[slackware-security] seamonkey
New seamonkey packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/seamonkey-2.53.7-i686-1slack14.2.txz: Upgraded. This update contains security fixes and improvements. For more information, see:...
[slackware-security] mozilla-firefox
New mozilla-firefox packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mozilla-firefox-60.7.1esr-i686-1slack14.2.txz: Upgraded. This release contains a security fix and improvements. The patched...
[slackware-security] python
New python packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/python-2.7.15-i586-1slack14.2.txz: Upgraded. Updated to the latest 2.7.x release. This fixes some security issues in...
[slackware-security] rsync
New rsync packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/rsync-3.1.3-i586-1slack14.2.txz: Upgraded. This update fixes two security issues: Fixed a buffer overru...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/php-5.6.32-i586-1slack14.2.txz: Upgraded. Several security bugs were fixed in this release: Out of bounds read in...
[slackware-security] dnsmasq
New dnsmasq packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/dnsmasq-2.78-i586-1slack14.2.txz: Upgraded. This update fixes bugs and remotely exploitable security...
[slackware-security] dhcp
New dhcp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/dhcp-4.3.3P1-i486-1slack14.1.txz: Upgraded. This update fixes a denial-of-service vulnerability. For more...
[slackware-security] gdk-pixbuf2
New gdk-pixbuf2 packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/gdk-pixbuf2-2.28.2-i486-2slack14.1.txz: Rebuilt. Gustavo Grieco discovered a heap overflow in the processing of BM...
[slackware-security] bind
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/bind-9.9.6P2-i486-1slack14.1.txz: Upgraded. Fix some denial-of-service and other security issues. For more...
SSA-2014-0925230703
New bash packages are available for Slackware 13.0 to fix a security issue. Here are the details from the Slackware 13.0 ChangeLog: patches/packages/bash-3.1.018-i486-3slack13.0.txz: Rebuilt. The patch for CVE-2014-7169 needed to be rebased against bash-3.1 in order to apply correctly. Thanks to ...