Slackware-13.0 ChangeLog (2010-01-24)
Sun Jan 24 20:22:46 UTC 2010
Packages
Upgraded
- patches/packages/httpd-2.2.14-i486-1_slack13.0.txz
This fixes a couple of security bugs when using mod_proxy_ftp.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3095
(* Security fix *) - patches/packages/mozilla-firefox-3.6-i686-1.txz
- patches/packages/php-5.2.12-i486-1_slack13.0.txz
This fixes many bugs, including a few security issues.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3558
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4017
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4142
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4143
(* Security fix *) - patches/packages/pidgin-2.6.5-i486-1_slack13.0.txz
This fixes a directory traversal vulnerability in Pidgin's MSN protocol
handling that may allow attackers to download arbitrary files.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0013
(* Security fix *)
Giuseppe Di Terlizzi