Tue Apr 28 20:18:40 UTC 202020200428201840

ap/cups-2.3.3-x86_64-1.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) l/imagemagick-7.0.10_10-x86_64-1.txz: Upgraded. n/samba-4.12.2-x86_64-1.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *) testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *)
author: Patrick J Volkerding <volkerdi@slackware.com> 2020-04-28 20:18:40 +0000
committer: Eric Hameleers <alien@slackware.com> 2020-04-29 08:59:53 +0200
commit: fc35afb36c8162cb44fa7d9b72b8e3bed0cfe491 (patch)
tree: 43c1dc112d02f0974df977da8d9007c3461ff276 /ChangeLog.rss
parent: 1cf9f87b65a9ec2c65a1fb409fe9e42a53af778f (diff)
download: current-fc35afb36c8162cb44fa7d9b72b8e3bed0cfe491.tar.gz
1 files changed, 51 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss
index aac30964..08b366b7 100644
--- a/ChangeLog.rss
+++ b/ChangeLog.rss
@@ -11,10 +11,59 @@
       <description>Tracking Slackware development in git.</description>
       <language>en-us</language>
       <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id>
-      <pubDate>Mon, 27 Apr 2020 20:27:30 GMT</pubDate>
-      <lastBuildDate>Tue, 28 Apr 2020 06:59:47 GMT</lastBuildDate>
+      <pubDate>Tue, 28 Apr 2020 20:18:40 GMT</pubDate>
+      <lastBuildDate>Wed, 29 Apr 2020 06:59:47 GMT</lastBuildDate>
       <generator>maintain_current_git.sh v 1.11</generator>
       <item>
+         <title>Tue, 28 Apr 2020 20:18:40 GMT</title>
+         <pubDate>Tue, 28 Apr 2020 20:18:40 GMT</pubDate>
+         <link>https://git.slackware.nl/current/tag/?h=20200428201840</link>
+         <guid isPermaLink="false">20200428201840</guid>
+         <description>
+           <![CDATA[<pre>
+ap/cups-2.3.3-x86_64-1.txz:  Upgraded.
+  This update fixes two security issues:
+  The ppdOpen function did not handle invalid UI constraint.
+  ppdcSource::get_resolution function did not handle invalid resolution strings.
+  The ippReadIO function may under-read an extension.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842
+  (* Security fix *)
+l/imagemagick-7.0.10_10-x86_64-1.txz:  Upgraded.
+n/samba-4.12.2-x86_64-1.txz:  Upgraded.
+  This update fixes two security issues:
+  A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
+  use-after-free in Samba's AD DC LDAP server.
+  A deeply nested filter in an un-authenticated LDAP search can exhaust the
+  LDAP server's stack memory causing a SIGSEGV.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704
+  (* Security fix *)
+testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz:  Upgraded.
+  This update fixes two security issues:
+  The ppdOpen function did not handle invalid UI constraint.
+  ppdcSource::get_resolution function did not handle invalid resolution strings.
+  The ippReadIO function may under-read an extension.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842
+  (* Security fix *)
+testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz:  Upgraded.
+  This update fixes two security issues:
+  A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
+  use-after-free in Samba's AD DC LDAP server.
+  A deeply nested filter in an un-authenticated LDAP search can exhaust the
+  LDAP server's stack memory causing a SIGSEGV.
+  For more information, see:
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704
+  (* Security fix *)
+           </pre>]]>
+         </description>
+      </item>
+      <item>
          <title>Mon, 27 Apr 2020 20:27:30 GMT</title>
          <pubDate>Mon, 27 Apr 2020 20:27:30 GMT</pubDate>
          <link>https://git.slackware.nl/current/tag/?h=20200427202730</link>
author	Patrick J Volkerding <volkerdi@slackware.com>	2020-04-28 20:18:40 +0000
committer	Eric Hameleers <alien@slackware.com>	2020-04-29 08:59:53 +0200
commit	fc35afb36c8162cb44fa7d9b72b8e3bed0cfe491 (patch)
tree	43c1dc112d02f0974df977da8d9007c3461ff276 /ChangeLog.rss
parent	1cf9f87b65a9ec2c65a1fb409fe9e42a53af778f (diff)
download	current-fc35afb36c8162cb44fa7d9b72b8e3bed0cfe491.tar.gz