Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackwarearm-current ChangeLog (2017-03-02) ====== ====== Thu Mar 2 20:21:22 UTC 2017 ====== ===== Packages ===== ==== Upgraded ==== * [[slackwarearm.current>a/ed-1.14.2-arm-1.txz]] * [[slackwarearm.current>a/glibc-zoneinfo-2017a-arm-1.txz]] * [[slackwarearm.current>a/libcgroup-0.41-arm-1.txz]] \\ Fixed rc.cgred to source the correct config file. \\ Changed /usr/bin/cgexec from setuid root to setgid cgred. \\ Don't remove the entire cgroup file system with "rc.cgconfig stop". \\ Thanks to chris.willing. * [[slackwarearm.current>a/util-linux-2.29.2-arm-1.txz]] \\ This update fixes a potential security issue that allows any local user \\ to send SIGKILL to other processes with root privileges. Note that \\ Slackware is not vulnerable since we do not use /bin/su from util-linux, \\ and the bug only affects systems that use PAM. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2616 \\ (* Security fix *) * [[slackwarearm.current>ap/nano-2.7.5-arm-1.txz]] * [[slackwarearm.current>ap/screen-4.5.1-arm-1.txz]] * [[slackwarearm.current>l/cairo-1.14.8-arm-1.txz]] * [[slackwarearm.current>l/fftw-3.3.6_pl1-arm-1.txz]] * [[slackwarearm.current>l/libsigsegv-2.11-arm-1.txz]] * [[slackwarearm.current>n/ModemManager-1.6.4-arm-1.txz]] * [[slackwarearm.current>n/NetworkManager-1.6.2-arm-1.txz]] * [[slackwarearm.current>n/curl-7.53.1-arm-1.txz]] \\ Fixes SSL_VERIFYSTATUS ignored security issue. \\ (Issue only existed in Slackware -current, not in any -stable releases) \\ For more information, see: \\ https://curl.haxx.se/docs/adv_20170222.html \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2629 \\ (* Security fix *) * [[slackwarearm.current>n/libmbim-1.14.0-arm-1.txz]] * [[slackwarearm.current>n/libqmi-1.16.2-arm-1.txz]] \\ Shared library .so-version bump. ==== Rebuilt ==== * [[slackwarearm.current>a/etc-14.2-arm-2.txz]] \\ Added cgred group to /etc/group.new. (cgred:x:41:) * [[slackwarearm.current>a/shadow-4.2.1-arm-2.txz]] \\ Patched a potential security issue that allows any local user to send \\ SIGKILL to other processes with root privileges. Note that Slackware \\ is not vulnerable since the bug only affects systems that use PAM. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2616 \\ (* Security fix *) * [[slackwarearm.current>l/libimobiledevice-1.2.0-arm-2.txz]] \\ Patched to fix mounting iOS 10 devices. Thanks to qunying. * [[slackwarearm.current>xap/windowmaker-0.95.7-arm-2.txz]] \\ Disabled overly verbose logging of warnings to syslog. Thanks to B Watson. {{tag>slackware changelog slackwarearm-current 2017/03}} news/2017/03/02/slackwarearm-current-changelog.txt Last modified: 7 years agoby Giuseppe Di Terlizzi Log In