glib2

2009-03-2722:03:04

Slackware Linux Project

www.slackware.com

0.001 Low

EPSS

Percentile

34.9%

JSON

New glib2 packages are available for Slackware 12.0, 12.1, 12.2, and -current
to fix overflows that may be security issues.

More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4316

Here are the details from the Slackware 12.2 ChangeLog:

patches/packages/glib2-2.16.6-i486-2_slack12.2.tgz:
This library has been patched to fix overflows that are
possible security holes.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4316
(* Security fix *)

Where to find the new packages:

HINT: Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try. This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 12.0:
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/glib2-2.12.12-i486-2_slack12.0.tgz

Updated package for Slackware 12.1:
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/glib2-2.14.6-i486-5_slack12.1.tgz

Updated package for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/glib2-2.16.6-i486-2_slack12.2.tgz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/glib2-2.18.4-i486-1.tgz

MD5 signatures:

Slackware 12.0 package:
84261839ea98ac522055b65d7e9bc606 glib2-2.12.12-i486-2_slack12.0.tgz

Slackware 12.1 package:
a9df347691fef98582c20b56c85b10c3 glib2-2.14.6-i486-5_slack12.1.tgz

Slackware 12.2 package:
5e4f04dd315c8ba597f9f73bf0a37b3e glib2-2.16.6-i486-2_slack12.2.tgz

Slackware -current package:
f4067116de6091aecd925872db32272c glib2-2.18.4-i486-1.tgz

Installation instructions:

Upgrade the package as root:
> upgradepkg glib2-2.16.6-i486-2_slack12.2.tgz

OSVersionArchitecturePackageVersionFilename
Slackware12.2i486glib2< 2.16.6glib2-2.16.6-i486-2_slack12.2.tgz
Slackware12.1i486glib2< 2.14.6glib2-2.14.6-i486-5_slack12.1.tgz
Slackware12.0i486glib2< 2.12.12glib2-2.12.12-i486-2_slack12.0.tgz

OS	Version	Architecture	Package	Version	Filename
Slackware	12.2	i486	glib2	< 2.16.6	glib2-2.16.6-i486-2_slack12.2.tgz
Slackware	12.1	i486	glib2	< 2.14.6	glib2-2.14.6-i486-5_slack12.1.tgz
Slackware	12.0	i486	glib2	< 2.12.12	glib2-2.12.12-i486-2_slack12.0.tgz