changelog_14.2
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | Next revisionBoth sides next revision | ||
changelog_14.2 [2020/05/20 00:31] – [2020-05-18] connie | changelog_14.2 [2020/06/14 18:58] – [2020-05-19] connie | ||
---|---|---|---|
Line 2: | Line 2: | ||
Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | ||
+ | |||
+ | ==== 2020-06-14 ==== | ||
+ | |||
+ | **linux-libre-*-4.4.227**: | ||
+ | These updates fix various bugs and security issues, including a mitigation | ||
+ | for SRBDS (Special Register Buffer Data Sampling). SRBDS is an MDS-like | ||
+ | speculative side channel that can leak bits from the random number generator | ||
+ | (RNG) across cores and threads. | ||
+ | Be sure to upgrade your initrd after upgrading the kernel packages. | ||
+ | If you use lilo to boot your machine, be sure lilo.conf points to the correct | ||
+ | kernel and initrd and run lilo as root to update the bootloader. | ||
+ | If you use elilo to boot your machine, you should run eliloconfig to copy the | ||
+ | kernel and initrd to the EFI System Partition. | ||
+ | For more information, | ||
+ | |||
+ | Fixed in 4.4.218: | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | Fixed in 4.4.219: | ||
+ | * https:// | ||
+ | * https:// | ||
+ | Fixed in 4.4.220: | ||
+ | * https:// | ||
+ | Fixed in 4.4.221: | ||
+ | * https:// | ||
+ | * https:// | ||
+ | Fixed in 4.4.222: | ||
+ | * https:// | ||
+ | Fixed in 4.4.224: | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | * https:// | ||
+ | Fixed in 4.4.225: | ||
+ | * https:// | ||
+ | Fixed in 4.4.226: | ||
+ | * https:// | ||
+ | Fixed in 4.4.227: | ||
+ | * https:// | ||
+ | (**Security fix**) | ||
+ | |||
+ | **gnutls-3.6.14**: | ||
+ | Fixed insecure session ticket key construction, | ||
+ | would not bind the session ticket encryption key with a value supplied by | ||
+ | the application until the initial key rotation, allowing attacker to bypass | ||
+ | authentication in TLS 1.3 and recover previous conversations in TLS 1.2. | ||
+ | [GNUTLS-SA-2020-06-03, | ||
+ | (**Security fix**) | ||
+ | |||
+ | **ca-certificates-20200602**: | ||
+ | This update provides the latest CA certificates to check for the | ||
+ | authenticity of SSL connections. | ||
+ | |||
+ | **proftpd-1.3.6d**: | ||
+ | This is a bugfix release: | ||
+ | Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959). | ||
==== 2020-05-19 ==== | ==== 2020-05-19 ==== |
changelog_14.2.txt · Last modified: 2023/12/23 13:40 by connie