Patrick J Volkerding
|
1c35025416
|
Thu Sep 12 03:58:53 UTC 2019
a/glibc-zoneinfo-2019c-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
a/openssl-solibs-1.1.1d-x86_64-1.txz: Upgraded.
a/openssl10-solibs-1.0.2t-x86_64-1.txz: Upgraded.
ap/mariadb-10.4.8-x86_64-1.txz: Upgraded.
l/netpbm-10.87.02-x86_64-1.txz: Upgraded.
n/curl-7.66.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
FTP-KRB double-free
TFTP small blocksize heap buffer overflow
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5481
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5482
(* Security fix *)
n/openssl-1.1.1d-x86_64-1.txz: Upgraded.
This update fixes low severity security issues:
Fixed a fork protection issue
Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
Compute ECC cofactors if not provided during EC_GROUP construction
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1563
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1547
(* Security fix *)
n/openssl10-1.0.2t-x86_64-1.txz: Upgraded.
This update fixes low severity security issues:
Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
Compute ECC cofactors if not provided during EC_GROUP construction
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1563
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1547
(* Security fix *)
n/p11-kit-0.23.17-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.1.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.1.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
extra/google-chrome/google-chrome.SlackBuild: Upgraded.
Patched the packaging script to account for the internal change
of control.tar.gz to control.tar.xz.
Thanks to _RDS_ and Tim Thomas who both provided the same patch.
|
2019-09-12 17:59:49 +02:00 |
|
Patrick J Volkerding
|
0b228c9576
|
Thu Aug 29 22:21:17 UTC 2019
a/kernel-firmware-20190827_7307a29-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.69-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.69-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.69-x86_64-1.txz: Upgraded.
ap/vim-8.1.1936-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.69-x86-1.txz: Upgraded.
e/emacs-26.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.69-noarch-1.txz: Upgraded.
n/libgcrypt-1.8.5-x86_64-1.txz: Upgraded.
Add mitigation against an ECDSA timing attack.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13627
(* Security fix *)
xap/vim-gvim-8.1.1936-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/mozilla-thunderbird-68.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.0/releasenotes/
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
2019-08-30 08:59:47 +02:00 |
|