Slackwarearm-14.0 ChangeLog (2014-11-06)
Thu Nov 6 21:17:28 UTC 2014
Packages
Upgraded
- patches/packages/php-5.4.34-arm-1_slack14.0.txz
This update fixes bugs and security issues.
#68044 (Integer overflow in unserialize() (32-bits only)). (CVE-2014-3669)
#68113 (Heap corruption in exif_thumbnail()). (CVE-2014-3670)
#68027 (Global buffer overflow in mkgmtime() function). (CVE-2014-3668)
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3669
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3670
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3668
(* Security fix *)
Rebuilt
- patches/packages/wget-1.14-arm-2_slack14.0.txz
This update fixes a symlink vulnerability that could allow an attacker
to write outside of the expected directory.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4877
(* Security fix *)