Slackware-14.0 ChangeLog (2013-08-21) [Lotar's Wiki]

slackware changelog slackware-14.0 2013-08news:2013:08:21:slackware-14.0-changelog

This is an old revision of the document!

patches/packages/hplip-3.12.9-i486-2_slack14.0.txz
This update fixes a stack-based buffer overflow in the hpmud_get_pml
function that can allow remote attackers to cause a denial of service
(crash) and possibly execute arbitrary code via a crafted SNMP response
with a large length value.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4267
(* Security fix *)
patches/packages/poppler-0.20.2-i486-2_slack14.0.txz
Sanitize error messages to remove escape sequences that could be used to
exploit vulnerable terminal emulators.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2142
(* Security fix *)

patches/packages/xpdf-3.03-i486-1_slack14.0.txz
Sanitize error messages to remove escape sequences that could be used to
exploit vulnerable terminal emulators.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2142
Thanks to mancha.
(* Security fix *)

slackware, changelog, slackware-14.0, 2013/08

news/2013/08/21/slackware-14.0-changelog.1528304534.txt.gz
Last modified: 6 years ago
by Giuseppe Di Terlizzi