mirror of
git://slackware.nl/current.git
synced 2024-12-27 09:59:16 +01:00
b913726b93
a/xfsprogs-5.12.0-x86_64-1.txz: Upgraded. l/libcap-2.50-x86_64-1.txz: Upgraded. l/libqalculate-3.19.0-x86_64-1.txz: Upgraded. n/gnutls-3.6.16-x86_64-1.txz: Upgraded. Fixed potential miscalculation of ECDSA/EdDSA code backported from Nettle. In GnuTLS, as long as it is built and linked against the fixed version of Nettle, this only affects GOST curves. [CVE-2021-20305] Fixed potential use-after-free in sending "key_share" and "pre_shared_key" extensions. When sending those extensions, the client may dereference a pointer no longer valid after realloc. This happens only when the client sends a large Client Hello message, e.g., when HRR is sent in a resumed session previously negotiated large FFDHE parameters, because the initial allocation of the buffer is large enough without having to call realloc (#1151). [GNUTLS-SA-2021-03-10, CVSS: low] For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20305 (* Security fix *) n/libnftnl-1.2.0-x86_64-1.txz: Upgraded. n/links-2.23-x86_64-1.txz: Upgraded. |
||
---|---|---|
.. | ||
libnftnl.SlackBuild | ||
libnftnl.url | ||
slack-desc |