news:2014:09:24:slackware64-current-changelog

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		 Previous revision
Last revisionBoth sides next revision
news:2014:09:24:slackware64-current-changelog [2015/03/10 01:12] – creata Giuseppe Di Terlizzinews:2014:09:24:slackware64-current-changelog [2015/03/10 12:39] Giuseppe Di Terlizzi
Line 7: Line 7:
  
 ==== Upgraded ==== ==== Upgraded ====
-  * [[slackware64.current>a/bash-4.3.025-x86_64-1.txz]] (Security fix) +  * [[slackware64.current>a/bash-4.3.025-x86_64-1.txz]] \\   This update fixes a vulnerability in bash related to how environment \\   variables are processed:  trailing code in function definitions was \\   executed, independent of the variable name.  In many common configurations \\   (such as the use of CGI scripts), this vulnerability is exploitable over \\   the network.  Thanks to Stephane Chazelas for discovering this issue. \\   For more information, see: \\     http://seclists.org/oss-sec/2014/q3/650 \\     http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271 \\   (* Security fix *) 
-  * [[slackware64.current>l/mozilla-nss-3.16.5-x86_64-1.txz]] (Security fix) +  * [[slackware64.current>l/mozilla-nss-3.16.5-x86_64-1.txz]] \\   Fixed an RSA Signature Forgery vulnerability. \\   For more information, see: \\     https://www.mozilla.org/security/announce/2014/mfsa2014-73.html \\   (* Security fix *)
-===== ChangeLog ===== +
-<code> +
-Wed Sep 24 22:52:53 UTC 2014 +
-a/bash-4.3.025-x86_64-1.txz:  Upgraded. +
-  This update fixes a vulnerability in bash related to how environment +
-  variables are processed:  trailing code in function definitions was +
-  executed, independent of the variable name.  In many common configurations +
-  (such as the use of CGI scripts), this vulnerability is exploitable over +
-  the network.  Thanks to Stephane Chazelas for discovering this issue. +
-  For more information, see: +
-    http://seclists.org/oss-sec/2014/q3/650 +
-    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271 +
-  (* Security fix *) +
-l/mozilla-nss-3.16.5-x86_64-1.txz:  Upgraded. +
-  Fixed an RSA Signature Forgery vulnerability. +
-  For more information, see: +
-    https://www.mozilla.org/security/announce/2014/mfsa2014-73.html +
-  (* Security fix *) +
-</code>+
  
  
- +{{tag>slackware changelog slackware64-current 2014/09}}
-{{tag>news 2014/09 slackware64-current changelog}}+
  
  • news/2014/09/24/slackware64-current-changelog.txt
  • Last modified: 9 years ago
  • by Giuseppe Di Terlizzi