[A-1596] New on ARMedslack-current
Page 1 of 1 • Share •
[A-1596] New on ARMedslack-current
Oncle Jean on Fri Dec 24, 2010 12:41 pm
Fri Dec 24 20:51:12 UTC 2010
ftp://ftp.armedslack.org/armedslack/armedslack-current/ChangeLog.txt
a/acpid-2.0.7-arm-1.tgz: Upgraded.
a/dbus-1.4.1-arm-1.tgz: Upgraded.
a/lvm2-2.02.79-arm-1.tgz: Upgraded.
a/mkinitrd-1.4.6-arm-2.tgz: Rebuilt.
Properly handle module options. Thanks to crocket.
l/freetype-2.4.4-arm-1.tgz: Upgraded.
n/bluez-4.81-arm-1.tgz: Upgraded.
n/php-5.3.4-arm-1.tgz: Upgraded.
This fixes many bugs, including some security issues.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2950
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3436
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3710
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4409
(* Security fix *)
n/proftpd-1.3.3d-arm-1.tgz: Upgraded.
This update fixes an unbounded copy operation in sql_prepare_where() that could be exploited to execute arbitrary code. However, this only affects servers that use the sql_mod module (which Slackware does not ship), and in addition the ability to exploit this depends on an SQL injection bug that was already fixed in proftpd-1.3.2rc2 (this according to upstream).
So in theory, this fix should only be of academic interest.
But in practice, better safe than sorry.
(* Security fix *)
ftp://ftp.armedslack.org/armedslack/armedslack-current/ChangeLog.txt
Oncle Jean- Admin
- Posts: 8332
Join date: 2009-10-24
Age: 53
Location: Québec -
Similar topics» Current status
» Current weight! Goals!
» List Of Current Mods/Judges
» Current food crisis at the new campus
» My current activity- Traffic Court and Banks
» Current weight! Goals!
» List Of Current Mods/Judges
» Current food crisis at the new campus
» My current activity- Traffic Court and Banks
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum