Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware-13.1 ChangeLog (2017-06-29) ====== ====== Thu Jun 29 20:55:09 UTC 2017 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware.13.1>patches/packages/bind-9.9.10_P2-i486-1_slack13.1.txz]] \\ This update fixes a high severity security issue: \\ An error in TSIG handling could permit unauthorized zone transfers \\ or zone updates. \\ For more information, see: \\ https://kb.isc.org/article/AA-01503/0 \\ https://kb.isc.org/article/AA-01504/0 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3142 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3143 \\ (* Security fix *) * [[slackware.13.1>patches/packages/httpd-2.2.32-i486-1_slack13.1.txz]] \\ This update fixes security issues which may lead to an authentication bypass \\ or a denial of service: \\ important: ap_get_basic_auth_pw() Authentication Bypass CVE-2017-3167 \\ important: mod_ssl Null Pointer Dereference CVE-2017-3169 \\ important: mod_http2 Null Pointer Dereference CVE-2017-7659 \\ important: ap_find_token() Buffer Overread CVE-2017-7668 \\ important: mod_mime Buffer Overread CVE-2017-7679 \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7659 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679 \\ (* Security fix *) {{tag>slackware changelog slackware-13.1 2017-06}} news/2017/06/29/slackware-13.1-changelog.txt Last modified: 13 months agoby Giuseppe Di Terlizzi Log In