Slackware64-14.1 ChangeLog (2013-08-21)
Wed Aug 21 21:26:58 UTC 2013
Packages
Upgraded
- ap/hplip-3.13.8-x86_64-1.txz
This update fixes a stack-based buffer overflow in the hpmud_get_pml
function that can allow remote attackers to cause a denial of service
(crash) and possibly execute arbitrary code via a crafted SNMP response
with a large length value.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4267
(* Security fix *) - l/poppler-0.24.0-x86_64-1.txz
Sanitize error messages to remove escape sequences that could be used to
exploit vulnerable terminal emulators.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2142
(* Security fix *) - kernels/*
testing/packages/xorg-server-1.14.x/xf86-video-ast-0.98.0-x86_64-1_testing.txz
testing/packages/xorg-server-1.14.x/xf86-video-ati-7.2.0-x86_64-1_testing.txz
testing/packages/xorg-server-1.14.x/xf86-video-intel-2.21.14-x86_64-1_testing.txz
testing/packages/xorg-server-1.14.x/xf86-video-neomagic-1.2.8-x86_64-1_testing.txz
Rebuilt
- xap/xpdf-3.03-x86_64-3.txz
Sanitize error messages to remove escape sequences that could be used to
exploit vulnerable terminal emulators.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2142
Thanks to mancha.
(* Security fix *)