changelog_14.2
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
changelog_14.2 [2019/04/07 00:30] – connie | changelog_14.2 [2019/05/24 00:57] – connie | ||
---|---|---|---|
Line 2: | Line 2: | ||
Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | ||
+ | |||
+ | ==== 2019-05-23 ==== | ||
+ | |||
+ | **curl-7.65.0**: | ||
+ | This release fixes the following security issues: | ||
+ | Integer overflows in curl_url_set | ||
+ | tftp: use the current blksize for recvfrom() | ||
+ | For more information, | ||
+ | * https:// | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | ==== 2019-05-16 ==== | ||
+ | |||
+ | **rdesktop-1.8.5**: | ||
+ | This update fixes security issues: | ||
+ | Add bounds checking to protocol handling in order to fix many | ||
+ | security problems when communicating with a malicious server. | ||
+ | (**Security fix**) | ||
+ | |||
+ | ==== 2019-04-26 ==== | ||
+ | |||
+ | **bind-9.11.6_P1**: | ||
+ | This update fixes a security issue: | ||
+ | The TCP client quota set using the tcp-clients option could be exceeded | ||
+ | in some cases. This could lead to exhaustion of file descriptors. | ||
+ | For more information, | ||
+ | * https:// | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | **curl-7.64.1**: | ||
+ | This update fixes a regression in curl-7.64.0 which could lead to | ||
+ | 100% CPU usage. Thanks to arcctgx. | ||
+ | |||
+ | |||
+ | ==== 2019-04-17 ==== | ||
+ | |||
+ | **libpng-1.6.37**: | ||
+ | This update fixes security issues: | ||
+ | * Fixed a use-after-free vulnerability (CVE-2019-7317) in png_image_free. | ||
+ | * Fixed a memory leak in the ARM NEON implementation of png_do_expand_palette. | ||
+ | * Fixed a memory leak in pngtest.c. | ||
+ | * Fixed two vulnerabilities (CVE-2018-14048, | ||
+ | For more information, | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | **libssh2-1.8.2**: | ||
+ | This update fixes a misapplied userauth patch that broke 1.8.1. | ||
+ | Thanks to Ook. | ||
+ | |||
+ | **glibc-zoneinfo-2019a**: | ||
+ | This package provides the latest timezone updates. | ||
==== 2019-04-06 ==== | ==== 2019-04-06 ==== |
changelog_14.2.txt · Last modified: 2023/12/23 13:40 by connie