changelog_14.2
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
| changelog_14.2 [2023/10/20 03:03] – [2023-10-16] connie | changelog_14.2 [2023/12/20 12:57] – [2023-12-13] connie | ||
|---|---|---|---|
| Line 2: | Line 2: | ||
| Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | Slackware upstream ChangeLog entries are courtesy of Patrick Volkerding. | ||
| + | |||
| + | ==== 2023-12-20 ==== | ||
| + | |||
| + | **libssh-0.10.6**: | ||
| + | This update fixes security issues: | ||
| + | Command injection using proxycommand. | ||
| + | Potential downgrade attack using strict kex. | ||
| + | Missing checks for return values of MD functions. | ||
| + | For more information, | ||
| + | * https:// | ||
| + | * https:// | ||
| + | * https:// | ||
| + | (**Security fix**) | ||
| + | |||
| + | **sudo-1.9.15p4**: | ||
| + | This is a bugfix release. | ||
| + | |||
| + | **libxml2-2.11.6**: | ||
| + | We're going to drop back to the 2.11 branch here on the stable releases | ||
| + | since it has all of the relevant security fixes and better compatibility. | ||
| + | |||
| + | **sudo-1.9.15p3**: | ||
| + | This is a bugfix release. | ||
| + | |||
| + | |||
| + | ==== 2023-12-13 ==== | ||
| + | |||
| + | **libxml2-2.12.3**: | ||
| + | This update addresses regressions when building against libxml2 that were | ||
| + | due to header file refactoring. | ||
| + | |||
| + | **libxml2-2.12.2**: | ||
| + | Add --sysconfdir=/ | ||
| + | Thanks to SpiderTux. | ||
| + | Fix the following security issues: | ||
| + | Fix integer overflows with XML_PARSE_HUGE. | ||
| + | Fix dict corruption caused by entity reference cycles. | ||
| + | Hashing of empty dict strings isn't deterministic. | ||
| + | Fix null deref in xmlSchemaFixupComplexType. | ||
| + | For more information, | ||
| + | * https:// | ||
| + | * https:// | ||
| + | * https:// | ||
| + | * https:// | ||
| + | (**Security fix**) | ||
| + | |||
| + | **ca-certificates-20231117**: | ||
| + | This update provides the latest CA certificates to check for the | ||
| + | authenticity of SSL connections. | ||
| + | |||
| + | **sudo-1.9.15p1**: | ||
| + | This is a bugfix release: | ||
| + | Fixed a bug introduced in sudo 1.9.15 that prevented LDAP-based sudoers | ||
| + | from being able to read the ldap.conf file. | ||
| + | |||
| + | ==== 2023-11-08 ==== | ||
| + | |||
| + | **sudo-1.9.15**: | ||
| + | The sudoers plugin has been modified to make it more resilient to ROWHAMMER | ||
| + | attacks on authentication and policy matching. | ||
| + | The sudoers plugin now constructs the user time stamp file path name using | ||
| + | the user-ID instead of the user name. This avoids a potential problem with | ||
| + | user names that contain a path separator ('/' | ||
| + | the path name. | ||
| + | For more information, | ||
| + | * https:// | ||
| + | * https:// | ||
| + | (**Security fix**) | ||
| + | |||
| ==== 2023-10-20 ==== | ==== 2023-10-20 ==== | ||
changelog_14.2.txt · Last modified: 2023/12/23 13:40 by connie