Slackware-current.Net

Search

Menu

Index
Latest updates
Latest official updates
Forum

By tag/category

Internet (63)
Console (61)
Office (33)
Security (14)
Text editing (3)
Multimedia (114)
Development (34)
Database (7)
Education (1)
GTK (126)
Printing (1)
Communication (30)
Games (14)
Game tools (4)
Documentation (5)
Archivers (7)
Mathematical (2)
Xfree / Xorg (201)
KDE/QT (73)
Gnome (61)
System (74)
Libraries (231)

Latest packages from official slackware-current

mozilla-thunderbird 2.0.0.14 - 1	07 May 08, 23:13	xap
Upgraded to thunderbird-2.0.0.14. This upgrade fixes some more security bugs. For more information, see: http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird (* Security fix *)

php 5.2.6 - 1	07 May 08, 23:13	n
Upgraded to PHP 5.2.6. This version of PHP contains many fixes and enhancements. Some of the fixes are security related, and the PHP release announcement provides this list: * Fixed possible stack buffer overflow in the FastCGI SAPI identified by Andrei Nigmatulin. * Fixed integer overflow in printf() identified by Maksymilian Aciemowicz. * Fixed security issue detailed in CVE-2008-0599 identified by Ryan Permeh. * Fixed a safe_mode bypass in cURL identified by Maksymilian Arciemowicz. * Properly address incomplete multibyte chars inside escapeshellcmd() identified by Stefan Esser. * Upgraded bundled PCRE to version 7.6 When last checked, CVE-2008-0599 was not yet open. However, additional information should become available at this URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0599 The list reproduced above, as well as additional information about other fixes in PHP 5.2.6 may be found in the PHP release announcement here: http://www.php.net/releases/5_2_6.php

slackpkg 2.70.3 - 2	01 May 08, 20:36	extra/slackpkg
Updated the version in the slackpkg script from 2.70.2 to 2.70.3.

kernel-generic 2.6.24.5 - 2	01 May 08, 03:36	a
Patched to fix a security issue in fs/dnotify.c. The use of dnotify (largely replaced by inotify on 2.6.x systems) could lead to a local DoS, or possibly a local root hole. We said we wouldn't make changes now unless something was "critical" -- and it seems we got what we wished for. ;-) This flaw will also be addressed in the kernels for previous releases as soon as possible. The patch itself may be found in source/k/linux-2.6.24.5-CVE-2008-1375-patch/. For additional information (when the CVE candidate is opened), see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1375 All the kernel packages below should also be considered security fixes. (* Security fix *)

kernel-generic-smp 2.6.24.5_smp - 2	01 May 08, 03:36	a
Patched and recompiled.

kernel-headers 2.6.24.5_smp - 2	01 May 08, 03:36	d
Rebuilt from a patched source tree.

kernel-huge 2.6.24.5 - 2	01 May 08, 03:36	a
Patched and recompiled.

kernel-huge-smp 2.6.24.5_smp - 2	01 May 08, 03:36	a
Patched and recompiled.

kernel-modules 2.6.24.5 - 2	01 May 08, 03:36	a
Patched and recompiled.

kernel-modules-smp 2.6.24.5_smp - 2	01 May 08, 03:36	a
Patched and recompiled.

kernel-source 2.6.24.5_smp - 2	01 May 08, 03:36	k
Patched (leaving dnotify.c.orig for comparison and/or reverting to patch up to a newer kernel later).

svgalib_helper 1.9.25_2.6.24.5 - 2	01 May 08, 03:36	l
Recompiled.

cups 1.3.7 - 2	29 Apr 08, 06:43	a
Applied patch str2790 to fix crash bugs in the PNG image filter. The issues are not believed to be capable of either a DoS (at worst, it simply crashes the filter processing the current job and does not crash the scheduler daemon, which just moves on to the next job in the print queue), nor arbitrary code execution (data from the image is never stored in the affected tile array). Still, it seems to be worth fixing here just in case. The CUPS bug report may be found here: http://www.cups.org/str.php?L2790

imlib 1.9.15 - 3	29 Apr 08, 06:43	l
Patched to fix rendering issues on Intel and possibly other graphics chipsets. Thanks to Iain Paton.

libmtp 0.2.6.1 - 1	29 Apr 08, 06:43	l
Upgraded to libmtp-0.2.6.1. The udev rules are now sed processed during build. Thanks much to Joerg Germeroth. :-)

libpng 1.2.27 - 1	29 Apr 08, 06:43	l
Upgraded to libpng-1.2.27. This fixes various bugs, the most important of which have to do with the handling of unknown chunks containing zero-length data. Processing a PNG image that contains these could cause the application using libpng to crash (possibly resulting in a denial of service), could potentially expose the contents of uninitialized memory, or could cause the execution of arbitrary code as the user running libpng (though it would probably be quite difficult to cause the execution of attacker-chosen code). We recommend upgrading the package as soon as possible. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1382 ftp://ftp.simplesystems.org/pub/libpng/png/src/libpng-1.2.27-README.txt (* Security fix *)

mysql 5.0.51b - 1	29 Apr 08, 06:43	ap
Upgraded to mysql-5.0.51b (which appears to be nothing more than a version bump...)

xf86-input-joystick 1.3.2 - 1	29 Apr 08, 06:43	x
Upgraded to xf86-input-joystick-1.3.2.

xf86-video-radeonhd 1.2.1 - 1	29 Apr 08, 06:43	x
Upgraded to xf86-video-radeonhd-1.2.1.

xf86-video-vmware 10.16.1 - 1	29 Apr 08, 06:43	x
Upgraded to xf86-video-vmware-10.16.1.

1 2 3 4 5 6 7 8 9 10

Latest package updates

OptiPNG	0.5.5 - 1
libsndfile	1.0.18pre21 - 1
Geany	20080514 - 1
Audacity	20080203 - 1
PCManFM	0.4.1.1 - 1
Xarchiver	0.4.6 - 1
Blueman	0.5 - 1
bluez-gnome	0.26 - 1

Latest official packages

mozilla-thunderbird	2.0.0.14 - 1
php	5.2.6 - 1
slackpkg	2.70.3 - 2
kernel-generic	2.6.24.5 - 2
kernel-generic-smp	2.6.24.5_smp - 2
kernel-headers	2.6.24.5_smp - 2
kernel-huge	2.6.24.5 - 2
kernel-huge-smp	2.6.24.5_smp - 2

Login