Patrick J Volkerding
|
16d0eba8e3
|
Wed Sep 20 00:08:45 UTC 2023
a/gettext-0.22.1-x86_64-1.txz: Upgraded.
a/kernel-firmware-20230918_3672cca-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.54-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.54-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.54-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.1.3-x86_64-1.txz: Upgraded.
ap/ghostscript-10.02.0-x86_64-2.txz: Rebuilt.
[PATCH] PDF interpreter - fix PageList processing.
Thanks to denydias.
d/gettext-tools-0.22.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.54-x86-1.txz: Upgraded.
k/kernel-source-6.1.54-noarch-1.txz: Upgraded.
l/dconf-editor-45.0-x86_64-1.txz: Upgraded.
l/harfbuzz-8.2.1-x86_64-1.txz: Upgraded.
l/nodejs-20.7.0-x86_64-1.txz: Upgraded.
n/openssl-3.1.3-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue that does not affect Linux:
Fix POLY1305 MAC implementation corrupting XMM registers on Windows.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-4807
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/rust-1.72.1-x86_64-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
2023-09-20 03:08:36 +02:00 |
|
Patrick J Volkerding
|
8daddd6079
|
Thu Sep 14 02:38:14 UTC 2023
a/kernel-firmware-20230907_dfa1146-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.53-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.53-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.53-x86_64-1.txz: Upgraded.
ap/ghostscript-10.02.0-x86_64-1.txz: Upgraded.
ap/vim-9.0.1897-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
d/cbindgen-0.26.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.53-x86-1.txz: Upgraded.
k/kernel-source-6.1.53-noarch-1.txz: Upgraded.
kde/keysmith-23.08.0-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
l/glib2-2.78.0-x86_64-2.txz: Rebuilt.
[PATCH] gthreadedresolver: Fix race between source callbacks and finalize.
Thanks to marav.
l/libarchive-3.7.2-x86_64-1.txz: Upgraded.
This update fixes multiple security vulnerabilities in the PAX writer:
Heap overflow in url_encode() in archive_write_set_format_pax.c.
NULL dereference in archive_write_pax_header_xattrs().
Another NULL dereference in archive_write_pax_header_xattrs().
NULL dereference in archive_write_pax_header_xattr().
(* Security fix *)
l/librsvg-2.56.4-x86_64-1.txz: Upgraded.
l/libsodium-1.0.19-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-8.3.0-x86_64-1.txz: Upgraded.
This update fixes a security issue:
HTTP headers eat all memory.
https://curl.se/docs/CVE-2023-38039.html
https://www.cve.org/CVERecord?id=CVE-2023-38039
(* Security fix *)
n/dovecot-2.3.20-x86_64-4.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
n/netatalk-3.1.16-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
Shared library .so-version bump.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-23121
https://www.cve.org/CVERecord?id=CVE-2022-23123
(* Security fix *)
n/openldap-2.6.6-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
n/php-8.2.10-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
n/proftpd-1.3.8-x86_64-4.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
x/libglvnd-1.7.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-115.2.2-x86_64-1.txz: Upgraded.
This release contains a security fix for a critical heap buffer overflow.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.2.2/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/
https://www.cve.org/CVERecord?id=CVE-2023-4863
(* Security fix *)
xap/vim-gvim-9.0.1897-x86_64-2.txz: Rebuilt.
Recompiled against libsodium-1.0.19.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
2023-09-14 05:06:53 +02:00 |
|