Slackware-14.2 ChangeLog (2018-03-08)
Thu Mar 8 07:07:45 UTC 2018
Packages
Rebuilt
- patches/packages/libtool-2.4.6-i586-5_slack14.2.txz
Rebuilt to fix the embedded GCC version number. Thanks to David Spencer. - patches/packages/openssh-7.4p1-i586-2_slack14.2.txz
sftp-server: in read-only mode, sftp-server was incorrectly permitting
creation of zero-length files. Reported by Michal Zalewski.
Thanks to arny (of Bluewhite64 fame) for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15906
(* Security fix *)
Upgraded
- patches/packages/php-5.6.34-i586-1_slack14.2.txz
This update fixes a stack buffer overflow vulnerability.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7584
(* Security fix *)