Slackwarearm-current ChangeLog (2017-11-06)

Mon Nov 06 08:08:08 UTC 2017

  • a/openssl-solibs-1.0.2m-arm-1.txz
  • ap/cups-2.2.6-arm-1.txz
  • ap/mariadb-10.2.10-arm-1.txz
    This update fixes bugs and security issues.
    For more information, see:
    (* Security fix *)
  • l/expat-2.2.5-arm-1.txz
  • n/openssl-1.0.2m-arm-1.txz
    This update fixes a security issue:
    There is a carry propagating bug in the x64 Montgomery squaring procedure.
    No EC algorithms are affected. Analysis suggests that attacks against RSA
    and DSA as a result of this defect would be very difficult to perform and
    are not believed likely. Attacks against DH are considered just feasible
    (although very difficult) because most of the work necessary to deduce
    information about a private key may be performed offline. The amount of
    resources required for such an attack would be very significant and likely
    only accessible to a limited number of attackers. An attacker would
    additionally need online access to an unpatched system using the target
    private key in a scenario with persistent DH parameters and a private
    key that is shared between multiple clients.
    This only affects processors that support the BMI1, BMI2 and ADX extensions
    like Intel Broadwell (5th generation) and later or AMD Ryzen.
    For more information, see:
    (* Security fix *)
  • a/sysvinit-scripts-2.0-noarch-6.txz
    Check that rc.mysqld is executable before attempting to shut down the
    database server. Checking for the is not enough, as /var/run/mysql
    might be bind mounted into a container. Thanks to Jakub Jankowski.
  • d/libtool-2.4.6-arm-4.txz
    Needed a rebuild after changing target architecture quadlet.
  • l/gegl-0.2.0-arm-4.txz
    Replaced deprecated functions in ff-load module. Thanks to Theodore Kilgore.
  • news/2017/11/06/slackwarearm-current-changelog.txt
  • Last modified: 4 years ago
  • by Giuseppe Di Terlizzi