diff options
| author | Patrick J Volkerding <volkerdi@slackware.com> | 2019-04-02 20:30:22 +0000 |
|---|---|---|
| committer | Eric Hameleers <alien@slackware.com> | 2019-04-03 08:59:45 +0200 |
| commit | caa5f28b83340fe23012ab27244a288449b26b26 (patch) | |
| tree | 70102860b8f3df20347f25125b7ea065340cd1d5 /ChangeLog.rss | |
| parent | df86158dc598141c63689a86c2f247053e616719 (diff) | |
| download | current-caa5f28b83340fe23012ab27244a288449b26b26.tar.gz | |
Tue Apr 2 20:30:22 UTC 201920190402203022
a/hwdata-0.322-noarch-1.txz: Upgraded.
a/kernel-firmware-20190402_67b7579-noarch-1.txz: Upgraded.
a/shadow-4.6-x86_64-2.txz: Rebuilt.
adduser: reprompt on invalid user input. Thanks to ttk.
ap/ghostscript-9.26-x86_64-2.txz: Rebuilt.
Fixes security issues:
A specially crafted PostScript file could have access to the file system
outside of the constrains imposed by -dSAFER.
Transient procedures can allow access to system operators, leading to
remote code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116
(* Security fix *)
d/vala-0.44.2-x86_64-1.txz: Upgraded.
l/glib-networking-2.60.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_36-x86_64-1.txz: Upgraded.
l/python-pillow-6.0.0-x86_64-1.txz: Upgraded.
n/wget-1.20.2-x86_64-1.txz: Upgraded.
Fixed an unspecified buffer overflow vulnerability.
(* Security fix *)
Diffstat (limited to 'ChangeLog.rss')
| -rw-r--r-- | ChangeLog.rss | 36 |
1 files changed, 34 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss index 19b84da7..2c35fbf3 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,10 +11,42 @@ <description>Tracking Slackware development in git.</description> <language>en-us</language> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> - <pubDate>Sun, 31 Mar 2019 18:51:16 GMT</pubDate> - <lastBuildDate>Mon, 1 Apr 2019 06:59:39 GMT</lastBuildDate> + <pubDate>Tue, 2 Apr 2019 20:30:22 GMT</pubDate> + <lastBuildDate>Wed, 3 Apr 2019 06:59:41 GMT</lastBuildDate> <generator>maintain_current_git.sh v 1.10</generator> <item> + <title>Tue, 2 Apr 2019 20:30:22 GMT</title> + <pubDate>Tue, 2 Apr 2019 20:30:22 GMT</pubDate> + <link>https://git.slackware.nl/current/tag/?h=20190402203022</link> + <guid isPermaLink="false">20190402203022</guid> + <description> + <![CDATA[<pre> +a/hwdata-0.322-noarch-1.txz: Upgraded. +a/kernel-firmware-20190402_67b7579-noarch-1.txz: Upgraded. +a/shadow-4.6-x86_64-2.txz: Rebuilt. + adduser: reprompt on invalid user input. Thanks to ttk. +ap/ghostscript-9.26-x86_64-2.txz: Rebuilt. + Fixes security issues: + A specially crafted PostScript file could have access to the file system + outside of the constrains imposed by -dSAFER. + Transient procedures can allow access to system operators, leading to + remote code execution. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116 + (* Security fix *) +d/vala-0.44.2-x86_64-1.txz: Upgraded. +l/glib-networking-2.60.1-x86_64-1.txz: Upgraded. +l/imagemagick-6.9.10_36-x86_64-1.txz: Upgraded. +l/python-pillow-6.0.0-x86_64-1.txz: Upgraded. +n/wget-1.20.2-x86_64-1.txz: Upgraded. + Fixed an unspecified buffer overflow vulnerability. + (* Security fix *) + </pre>]]> + </description> + </item> + <item> <title>Sun, 31 Mar 2019 18:51:16 GMT</title> <pubDate>Sun, 31 Mar 2019 18:51:16 GMT</pubDate> <link>https://git.slackware.nl/current/tag/?h=20190331185116</link> |