Slackwarearm-current ChangeLog (2017-06-25)
Sun Jun 25 08:08:08 UTC 2017
Packages
Upgraded
- a/kernel-modules-armv7-4.11.7_armv7-arm-1.txz
- a/kernel_armv7-4.11.7-arm-1.txz
“Stack Clash” fixes – see below.
(* Security fix *) - d/kernel-headers-4.11.7-arm-1.txz
- k/kernel-source-4.11.7-arm-1.txz
This kernel fixes two “Stack Clash” vulnerabilities reported by Qualys.
The first issue may allow attackers to execute arbitrary code with elevated
privileges. Failed attack attempts will likely result in denial-of-service
conditions. The second issue can be exploited to bypass certain security
restrictions and perform unauthorized actions.
For more information, see:
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000364
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365
(* Security fix *) - kernels/*
Rebuilt
- isolinux/*