Slackware64-14.0 ChangeLog (2019-01-23) [Lotar's Wiki]

This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong.

====== Slackware64-14.0 ChangeLog (2019-01-23) ======

====== Wed Jan 23 04:39:04 UTC 2019 ======
===== Packages =====

==== Upgraded ====
  * [[slackware64.14.0>patches/packages/httpd-2.4.38-x86_64-1_slack14.0.txz]] \\   This release contains security fixes and improvements. \\   mod_session: mod_session_cookie does not respect expiry time allowing \\   sessions to be reused.  [Hank Ibell] \\   mod_http2: fixes a DoS attack vector. By sending slow request bodies \\   to resources not consuming them, httpd cleanup code occupies a server \\   thread unnecessarily. This was changed to an immediate stream reset \\   which discards all stream state and incoming data.  [Stefan Eissing] \\   mod_ssl: Fix infinite loop triggered by a client-initiated \\   renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and \\   later.  PR 63052.  [Joe Orton] \\   For more information, see: \\     https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199 \\     https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189 \\     https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190 \\   (* Security fix *)


{{tag>slackware changelog slackware64-14.0 2019-01}}

Lotar's Wiki

Wiki

DokuWiki Template & Plugins

Info

Wiki

DokuWiki Template & Plugins

Info

Social