Thu Oct 27 02:30:15 UTC 2022

patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz: Upgraded. This update fixes security issues: HSTS bypass via IDN. HTTP proxy double-free. .netrc parser out-of-bounds access. POST following PUT confusion. For more information, see: https://curl.se/docs/CVE-2022-42916.html https://curl.se/docs/CVE-2022-42915.html https://curl.se/docs/CVE-2022-35260.html https://curl.se/docs/CVE-2022-32221.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221 (* Security fix *)
2024-12-27 09:59:16 +01:00 · 2022-10-27 02:30:15 +00:00 · 2022-10-27 02:30:15 +00:00 · af0a59722c
commit af0a59722c
parent 6e7a178c9a
4 changed files with 66 additions and 22 deletions
--- a/ChangeLog.rss
+++ b/ChangeLog.rss
@ -11,9 +11,35 @@
      <description>Tracking Slackware development in git.</description>
      <language>en-us</language>
      <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id>
-      <pubDate>Tue, 25 Oct 2022 18:38:58 GMT</pubDate>
-      <lastBuildDate>Wed, 26 Oct 2022 11:30:22 GMT</lastBuildDate>
+      <pubDate>Thu, 27 Oct 2022 02:30:15 GMT</pubDate>
+      <lastBuildDate>Fri, 28 Oct 2022 11:29:56 GMT</lastBuildDate>
      <generator>maintain_current_git.sh v 1.17</generator>
+      <item>
+         <title>Thu, 27 Oct 2022 02:30:15 GMT</title>
+         <pubDate>Thu, 27 Oct 2022 02:30:15 GMT</pubDate>
+         <link>https://git.slackware.nl/current/tag/?h=20221027023015</link>
+         <guid isPermaLink="false">20221027023015</guid>
+         <description>
+           <![CDATA[<pre>
+patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes security issues:
+  HSTS bypass via IDN.
+  HTTP proxy double-free.
+  .netrc parser out-of-bounds access.
+  POST following PUT confusion. 
+  For more information, see:
+    https://curl.se/docs/CVE-2022-42916.html
+    https://curl.se/docs/CVE-2022-42915.html
+    https://curl.se/docs/CVE-2022-35260.html
+    https://curl.se/docs/CVE-2022-32221.html
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
+  (* Security fix *)
+           </pre>]]>
+         </description>
+      </item>
      <item>
         <title>Tue, 25 Oct 2022 18:38:58 GMT</title>
         <pubDate>Tue, 25 Oct 2022 18:38:58 GMT</pubDate>
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@ -1,3 +1,21 @@
+Thu Oct 27 02:30:15 UTC 2022
+patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes security issues:
+  HSTS bypass via IDN.
+  HTTP proxy double-free.
+  .netrc parser out-of-bounds access.
+  POST following PUT confusion. 
+  For more information, see:
+    https://curl.se/docs/CVE-2022-42916.html
+    https://curl.se/docs/CVE-2022-42915.html
+    https://curl.se/docs/CVE-2022-35260.html
+    https://curl.se/docs/CVE-2022-32221.html
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
+  (* Security fix *)
+--------------------------+
 Tue Oct 25 18:38:58 UTC 2022
 patches/packages/expat-2.5.0-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes a security issue:
--- a/FILELIST.TXT
+++ b/FILELIST.TXT
@ -1,20 +1,20 @@
-Tue Oct 25 18:43:53 UTC 2022
+Thu Oct 27 02:36:52 UTC 2022

 Here is the file list for this directory.  If you are using a 
 mirror site and find missing or extra files in the disk 
 subdirectories, please have the archive administrator refresh
 the mirror.

-drwxr-xr-x 12 root root      4096 2022-10-25 18:38 .
+drwxr-xr-x 12 root root      4096 2022-10-27 02:30 .
 -rw-r--r--  1 root root      5767 2022-02-02 22:44 ./ANNOUNCE.15.0
 -rw-r--r--  1 root root     16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT
-rw-r--r--  1 root root   1155615 2022-10-21 18:24 ./CHECKSUMS.md5
-rw-r--r--  1 root root       163 2022-10-21 18:24 ./CHECKSUMS.md5.asc
+-rw-r--r--  1 root root   1155615 2022-10-25 18:44 ./CHECKSUMS.md5
+-rw-r--r--  1 root root       163 2022-10-25 18:44 ./CHECKSUMS.md5.asc
 -rw-r--r--  1 root root     17976 1994-06-10 02:28 ./COPYING
 -rw-r--r--  1 root root     35147 2007-06-30 04:21 ./COPYING3
 -rw-r--r--  1 root root     19573 2016-06-23 20:08 ./COPYRIGHT.TXT
 -rw-r--r--  1 root root       616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT
-rw-r--r--  1 root root   1945410 2022-10-25 18:38 ./ChangeLog.txt
+-rw-r--r--  1 root root   1946183 2022-10-27 02:30 ./ChangeLog.txt
 drwxr-xr-x  3 root root      4096 2013-03-20 22:17 ./EFI
 drwxr-xr-x  2 root root      4096 2022-02-02 08:21 ./EFI/BOOT
 -rw-r--r--  1 root root   1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi
@ -25,7 +25,7 @@ drwxr-xr-x  2 root root      4096 2022-02-02 08:21 ./EFI/BOOT
 -rwxr-xr-x  1 root root      2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh
 -rw-r--r--  1 root root     10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg
 -rw-r--r--  1 root root      1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg
-rw-r--r--  1 root root   1508427 2022-10-21 18:23 ./FILELIST.TXT
+-rw-r--r--  1 root root   1508427 2022-10-25 18:43 ./FILELIST.TXT
 -rw-r--r--  1 root root      1572 2012-08-29 18:27 ./GPG-KEY
 -rw-r--r--  1 root root    864745 2022-02-02 08:25 ./PACKAGES.TXT
 -rw-r--r--  1 root root      8034 2022-02-02 03:36 ./README.TXT
@ -738,13 +738,13 @@ drwxr-xr-x  2 root root      4096 2008-05-07 05:21 ./pasture/source/php/pear
 -rwxr-xr-x  1 root root      9448 2018-05-16 22:38 ./pasture/source/php/php.SlackBuild
 -rw-r--r--  1 root root       775 2017-07-07 19:25 ./pasture/source/php/php.ini-development.diff.gz
 -rw-r--r--  1 root root       830 2005-12-09 05:18 ./pasture/source/php/slack-desc
-drwxr-xr-x  4 root root      4096 2022-10-25 18:43 ./patches
-rw-r--r--  1 root root     51186 2022-10-25 18:43 ./patches/CHECKSUMS.md5
-rw-r--r--  1 root root       163 2022-10-25 18:43 ./patches/CHECKSUMS.md5.asc
-rw-r--r--  1 root root     68310 2022-10-25 18:43 ./patches/FILE_LIST
-rw-r--r--  1 root root  11684161 2022-10-25 18:43 ./patches/MANIFEST.bz2
-rw-r--r--  1 root root     37792 2022-10-25 18:43 ./patches/PACKAGES.TXT
-drwxr-xr-x  3 root root     16384 2022-10-25 18:43 ./patches/packages
+drwxr-xr-x  4 root root      4096 2022-10-27 02:36 ./patches
+-rw-r--r--  1 root root     51186 2022-10-27 02:36 ./patches/CHECKSUMS.md5
+-rw-r--r--  1 root root       163 2022-10-27 02:36 ./patches/CHECKSUMS.md5.asc
+-rw-r--r--  1 root root     68310 2022-10-27 02:36 ./patches/FILE_LIST
+-rw-r--r--  1 root root  11686987 2022-10-27 02:36 ./patches/MANIFEST.bz2
+-rw-r--r--  1 root root     37792 2022-10-27 02:36 ./patches/PACKAGES.TXT
+drwxr-xr-x  3 root root     16384 2022-10-27 02:36 ./patches/packages
 -rw-r--r--  1 root root       327 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txt
 -rw-r--r--  1 root root     10716 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txz
 -rw-r--r--  1 root root       163 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txz.asc
@ -766,9 +766,9 @@ drwxr-xr-x  3 root root     16384 2022-10-25 18:43 ./patches/packages
 -rw-r--r--  1 root root       642 2022-09-21 19:13 ./patches/packages/cups-2.4.2-x86_64-3_slack15.0.txt
 -rw-r--r--  1 root root   1589324 2022-09-21 19:13 ./patches/packages/cups-2.4.2-x86_64-3_slack15.0.txz
 -rw-r--r--  1 root root       163 2022-09-21 19:13 ./patches/packages/cups-2.4.2-x86_64-3_slack15.0.txz.asc
-rw-r--r--  1 root root       552 2022-09-01 01:46 ./patches/packages/curl-7.85.0-x86_64-1_slack15.0.txt
-rw-r--r--  1 root root   1307336 2022-09-01 01:46 ./patches/packages/curl-7.85.0-x86_64-1_slack15.0.txz
-rw-r--r--  1 root root       163 2022-09-01 01:46 ./patches/packages/curl-7.85.0-x86_64-1_slack15.0.txz.asc
+-rw-r--r--  1 root root       552 2022-10-26 17:10 ./patches/packages/curl-7.86.0-x86_64-1_slack15.0.txt
+-rw-r--r--  1 root root   1321572 2022-10-26 17:10 ./patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz
+-rw-r--r--  1 root root       163 2022-10-26 17:10 ./patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz.asc
 -rw-r--r--  1 root root       373 2022-02-24 19:12 ./patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txt
 -rw-r--r--  1 root root    993108 2022-02-24 19:12 ./patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txz
 -rw-r--r--  1 root root       163 2022-02-24 19:12 ./patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txz.asc
@ -923,7 +923,7 @@ drwxr-xr-x  2 root root      4096 2022-08-26 04:06 ./patches/packages/linux-5.15
 -rw-r--r--  1 root root       388 2022-10-15 04:05 ./patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txt
 -rw-r--r--  1 root root    105356 2022-10-15 04:05 ./patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz
 -rw-r--r--  1 root root       163 2022-10-15 04:05 ./patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz.asc
-drwxr-xr-x 52 root root      4096 2022-10-25 18:36 ./patches/source
+drwxr-xr-x 52 root root      4096 2022-10-27 01:30 ./patches/source
 drwxr-xr-x  2 root root      4096 2022-01-16 05:07 ./patches/source/aaa_base
 -rw-r--r--  1 root root     11041 2022-02-15 04:49 ./patches/source/aaa_base/_aaa_base.tar.gz
 -rwxr-xr-x  1 root root      3894 2022-02-15 05:07 ./patches/source/aaa_base/aaa_base.SlackBuild
@ -994,9 +994,9 @@ drwxr-xr-x  2 root root      4096 2022-09-21 19:12 ./patches/source/cups
 -rw-r--r--  1 root root        46 2021-06-29 19:51 ./patches/source/cups/cups.url
 -rw-r--r--  1 root root       454 2021-04-26 18:11 ./patches/source/cups/doinst.sh.gz
 -rw-r--r--  1 root root      1094 2018-11-29 19:15 ./patches/source/cups/slack-desc
-drwxr-xr-x  2 root root      4096 2022-09-01 01:44 ./patches/source/curl
-rw-r--r--  1 root root   2480648 2022-08-31 06:16 ./patches/source/curl/curl-7.85.0.tar.xz
-rw-r--r--  1 root root       488 2022-08-31 06:16 ./patches/source/curl/curl-7.85.0.tar.xz.asc
+drwxr-xr-x  2 root root      4096 2022-10-26 17:08 ./patches/source/curl
+-rw-r--r--  1 root root   2518356 2022-10-26 06:18 ./patches/source/curl/curl-7.86.0.tar.xz
+-rw-r--r--  1 root root       488 2022-10-26 06:18 ./patches/source/curl/curl-7.86.0.tar.xz.asc
 -rwxr-xr-x  1 root root      4861 2022-04-27 18:34 ./patches/source/curl/curl.SlackBuild
 -rw-r--r--  1 root root        30 2018-04-20 16:49 ./patches/source/curl/curl.url
 -rw-r--r--  1 root root      1004 2019-02-06 21:57 ./patches/source/curl/slack-desc
--- a/patches/packages/curl-7.86.0-x86_64-1_slack15.0.txt
+++ b/patches/packages/curl-7.86.0-x86_64-1_slack15.0.txt