Slackware64-14.0 ChangeLog (2018-03-08)
Thu Mar 8 07:07:45 UTC 2018
Packages
Rebuilt
- patches/packages/openssh-7.4p1-x86_64-2_slack14.0.txz
sftp-server: in read-only mode, sftp-server was incorrectly permitting
creation of zero-length files. Reported by Michal Zalewski.
Thanks to arny (of Bluewhite64 fame) for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15906
(* Security fix *)
Upgraded
- patches/packages/php-5.6.34-x86_64-1_slack14.0.txz
This update fixes a stack buffer overflow vulnerability.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7584
(* Security fix *)