changelog_14.2
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
changelog_14.2 [2020/04/22 01:16] – [2020-04-17] connie | changelog_14.2 [2020/05/20 00:31] – [2020-05-18] connie | ||
---|---|---|---|
Line 2: | Line 2: | ||
Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | ||
+ | |||
+ | ==== 2020-05-19 ==== | ||
+ | |||
+ | **bind-9.11.19**: | ||
+ | This update fixes security issues: | ||
+ | A malicious actor who intentionally exploits the lack of effective | ||
+ | limitation on the number of fetches performed when processing referrals | ||
+ | can, through the use of specially crafted referrals, cause a recursing | ||
+ | server to issue a very large number of fetches in an attempt to process | ||
+ | the referral. This has at least two potential effects: The performance of | ||
+ | the recursing server can potentially be degraded by the additional work | ||
+ | required to perform these fetches, and the attacker can exploit this | ||
+ | behavior to use the recursing server as a reflector in a reflection attack | ||
+ | with a high amplification factor. | ||
+ | Replaying a TSIG BADTIME response as a request could trigger an assertion | ||
+ | failure. | ||
+ | For more information, | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | **libexif-0.6.22**: | ||
+ | This update fixes bugs and security issues: | ||
+ | * CVE-2018-20030: | ||
+ | * CVE-2020-13114: | ||
+ | * CVE-2020-13113: | ||
+ | * CVE-2020-13112: | ||
+ | * CVE-2020-0093: | ||
+ | * CVE-2019-9278: | ||
+ | * CVE-2020-12767: | ||
+ | * CVE-2016-6328: | ||
+ | * CVE-2017-7544: | ||
+ | For more information, | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | ==== 2020-05-18 ==== | ||
+ | |||
+ | **sane-1.0.30**: | ||
+ | This update fixes several security issues. | ||
+ | For more information, | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | **glibc-zoneinfo-2020a**: | ||
+ | This package provides the latest timezone updates. | ||
==== 2020-04-21 ==== | ==== 2020-04-21 ==== |
changelog_14.2.txt · Last modified: 2023/12/23 13:40 by connie