Slackware-14.1 ChangeLog (2020-11-25)
Wed Nov 25 23:25:45 UTC 2020
Packages
Upgraded
- patches/packages/bind-9.11.25-i486-1_slack14.1.txz
This update fixes bugs, including a denial-of-service security issue:
After a Negative Trust Anchor (NTA) is added, BIND performs periodic
checks to see if it is still necessary. If BIND encountered a failure
while creating a query to perform such a check, it attempted to
dereference a NULL pointer, resulting in a crash. [GL #2244]
(* Security fix *)
Wed Nov 25 02:29:14 UTC 2020
Packages
Rebuilt
- patches/packages/mutt-1.10.1-i486-2_slack14.1.txz
Mutt had incorrect error handling when initially connecting to an IMAP
server, which could result in an attempt to authenticate without enabling TLS.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28896
(* Security fix *)