Slackwarearm-14.2 ChangeLog (2022-02-23)
Wed Feb 23 08:08:08 UTC 2022
Packages
Rebuilt
- patches/packages/expat-2.4.3-arm-5_slack14.2.txz
Fixed a regression introduced by the fix for CVE-2022-25313 that affects
applications that (1) call function XML_SetElementDeclHandler and (2) are
parsing XML that contains nested element declarations:
(e.g. “<!ELEMENT junk ((bar|foo|xyz+), zebra*)>”).
Upgraded
- patches/packages/flac-1.3.4-arm-1_slack14.2.txz
This update fixes overflow issues with encoding and decoding.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0499
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0561
(* Security fix *)