Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware-current ChangeLog (2020-04-28) ====== ====== Tue Apr 28 20:18:40 UTC 2020 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware.current>ap/cups-2.3.3-i586-1.txz]] \\ This update fixes two security issues: \\ The ppdOpen function did not handle invalid UI constraint. \\ ppdcSource::get_resolution function did not handle invalid resolution strings. \\ The ippReadIO function may under-read an extension. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 \\ (* Security fix *) * [[slackware.current>l/imagemagick-7.0.10_10-i586-1.txz]] * [[slackware.current>n/samba-4.12.2-i586-1.txz]] \\ This update fixes two security issues: \\ A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a \\ use-after-free in Samba's AD DC LDAP server. \\ A deeply nested filter in an un-authenticated LDAP search can exhaust the \\ LDAP server's stack memory causing a SIGSEGV. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 \\ (* Security fix *) * [[slackware.current>testing/packages/PAM/cups-2.3.3-i586-1_pam.txz]] \\ This update fixes two security issues: \\ The ppdOpen function did not handle invalid UI constraint. \\ ppdcSource::get_resolution function did not handle invalid resolution strings. \\ The ippReadIO function may under-read an extension. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 \\ (* Security fix *) * [[slackware.current>testing/packages/PAM/samba-4.12.2-i586-1_pam.txz]] \\ This update fixes two security issues: \\ A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a \\ use-after-free in Samba's AD DC LDAP server. \\ A deeply nested filter in an un-authenticated LDAP search can exhaust the \\ LDAP server's stack memory causing a SIGSEGV. \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 \\ (* Security fix *) {{tag>slackware changelog slackware-current 2020/04}} news/2020/04/28/slackware-current-changelog.txt Last modified: 4 years agoby Giuseppe Di Terlizzi Log In