Slackware-13.37 ChangeLog (2015-01-28) [Lotar's Wiki]

slackware changelog slackware-13.37 2015-01news:2015:01:28:slackware-13.37-changelog

This is an old revision of the document!

patches/packages/glibc-2.13-i486-8_slack13.37.txz
This update patches a security issue __nss_hostname_digits_dots() function
of glibc which may be triggered through the gethostbyname*() set of
functions. This flaw could allow local or remote attackers to take control
of a machine running a vulnerable version of glibc. Thanks to Qualys for
discovering this issue (also known as the GHOST vulnerability.)
For more information, see:
https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235
(* Security fix *)
patches/packages/glibc-i18n-2.13-i486-8_slack13.37.txz
patches/packages/glibc-profile-2.13-i486-8_slack13.37.txz
patches/packages/glibc-solibs-2.13-i486-8_slack13.37.txz

patches/packages/glibc-zoneinfo-2014j-noarch-1.txz
Upgraded to tzcode2014j and tzdata2014j.

slackware, changelog, slackware-13.37, 2015/01

news/2015/01/28/slackware-13.37-changelog.1429739651.txt.gz
Last modified: 9 years ago
by Giuseppe Di Terlizzi