Slackware-14.0 ChangeLog (2013-10-14)
Mon Oct 14 22:09:17 UTC 2013
Packages
Upgraded
- patches/packages/gnupg-1.4.15-i486-1_slack14.0.txz
Fixed possible infinite recursion in the compressed packet
parser. [CVE-2013-4402]
Protect against rogue keyservers sending secret keys.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4402
(* Security fix *) - patches/packages/gnupg2-2.0.22-i486-1_slack14.0.txz
Fixed possible infinite recursion in the compressed packet
parser. [CVE-2013-4402]
Protect against rogue keyservers sending secret keys.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4402
(* Security fix *) - patches/packages/libgpg-error-1.11-i486-1_slack14.0.txz
This package upgrade was needed by the new version of gnupg2.
Rebuilt
- patches/packages/xorg-server-1.12.4-i486-2_slack14.0.txz
Patched a use-after-free bug that can cause an X server crash or
memory corruption.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396
(* Security fix *) - patches/packages/xorg-server-xephyr-1.12.4-i486-2_slack14.0.txz
- patches/packages/xorg-server-xnest-1.12.4-i486-2_slack14.0.txz
- patches/packages/xorg-server-xvfb-1.12.4-i486-2_slack14.0.txz