Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware-13.1 ChangeLog (2015-07-28) ====== ====== Tue Jul 28 19:36:39 UTC 2015 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware.13.1>patches/packages/bind-9.9.7_P2-i486-1_slack13.1.txz]] \\ This update fixes a security issue where an error in the handling of TKEY \\ queries can be exploited by an attacker for use as a denial-of-service \\ vector, as a constructed packet can use the defect to trigger a REQUIRE \\ assertion failure, causing BIND to exit. \\ Impact: \\ Both recursive and authoritative servers are vulnerable to this defect. \\ Additionally, exposure is not prevented by either ACLs or configuration \\ options limiting or denying service because the exploitable code occurs \\ early in the packet handling, before checks enforcing those boundaries. \\ Operators should take steps to upgrade to a patched version as soon as \\ possible. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5477 \\ https://kb.isc.org/article/AA-01272 \\ (* Security fix *) {{tag>slackware changelog slackware-13.1 2015-07}} news/2015/07/28/slackware-13.1-changelog.txt Last modified: 12 months agoby Giuseppe Di Terlizzi Log In