Slackware64-14.0 ChangeLog (2017-10-27)
Fri Oct 27 20:34:35 UTC 2017
Packages
Upgraded
- patches/packages/php-5.6.32-x86_64-1_slack14.0.txz
Several security bugs were fixed in this release:
Out of bounds read in timelib_meridian().
The arcfour encryption stream filter crashes PHP.
Applied upstream patch for PCRE (CVE-2016-1283).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1283
(* Security fix *) - patches/packages/wget-1.19.2-x86_64-1_slack14.0.txz
This update fixes stack and heap overflows in in HTTP protocol handling.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13089
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13090
(* Security fix *)