Benvenuti su Slacky.eu - Italian Slackware Community

Community dedicata alla distribuzione Slackware Linux.

Slacky.eu è un progetto che offre un Forum in italiano per Slackware Linux, leggi la nostra storia.

Aggiornamenti dal mondo Slackware

News

3 Febbraio 2022 - Slackware 15.0

Oggi (2 febbraio alle 22:22 orario UTC) è stata finalmente rilasciata la Slackware 15.0. Vi aspettiamo nel forum per commentare. Happy fun :)

13 Gennaio 2022 - Slackware 15 RC3

Siamo arrivati alla terza, e a meno di sorprese, l'ultima Release Candidate di Slackware 15. Da ora in poi ci saranno modifiche solo in caso di problemi seri, ma tutto lascia supporre che il 17 gennaio, come anticipato da Pat su LinuxQuestions, esca la tanto sospirata versione 15. Ti aspettiamo nel forum per parlarne.

16 Agosto 2021 - Slackware 15 RC1

È uscita stanotte la prima Release Candidate di Slackware 15. Come ha scritto Pat si tratta di un "congelamento", a meno di bugfix. Questo significa che la 15.0 sarà rilasciata con i software nella versione presente in questa RC1, a meno appunto di bug trovati, o aggiornamenti di sicurezza.

15 Aprile 2021 - Slackware 15 beta

Qualche giorno fa Pat ha rilasciato un corposo aggiornamento definendolo beta. La data dell'uscita di Slackware 15 si fa sempre più vicina.


ChangeLog

Slackware Current

			
  • Sun, 05 Feb 2023 20:39:36 +0000
    Sun Feb 5 20:39:36 UTC 2023
    ap/htop-3.2.2-x86_64-1.txz: Upgraded.
    l/fuse3-3.13.1-x86_64-1.txz: Upgraded.
    l/pangomm-2.46.3-x86_64-1.txz: Upgraded.
    l/tevent-0.14.1-x86_64-1.txz: Upgraded.
    n/dnsmasq-2.89-x86_64-1.txz: Upgraded.
    x/libX11-1.8.4-x86_64-1.txz: Upgraded.
    x/xkeyboard-config-2.38-noarch-1.txz: Upgraded.
    x/xvidtune-1.0.4-x86_64-1.txz: Upgraded.
  • Fri, 03 Feb 2023 20:04:33 +0000
    Fri Feb 3 20:04:33 UTC 2023
    a/aaa_glibc-solibs-2.37-x86_64-2.txz: Rebuilt.
    a/e2fsprogs-1.46.6-x86_64-1.txz: Upgraded.
    a/hwdata-0.367-noarch-1.txz: Upgraded.
    l/glibc-2.37-x86_64-2.txz: Rebuilt.
    [PATCH] Account for grouping in printf width (bug 23432).
    This issue could cause a overflow with sprintf in the corner case where an
    application computes the size of buffer to be exactly enough to fit the
    digits in question, but sprintf ends up writing a couple of extra bytes.
    Thanks to marav for the heads-up.
    For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-25139
    (* Security fix *)
    l/glibc-i18n-2.37-x86_64-2.txz: Rebuilt.
    l/glibc-profile-2.37-x86_64-2.txz: Rebuilt.
    l/libcap-2.67-x86_64-1.txz: Upgraded.
    l/poppler-data-0.4.12-noarch-1.txz: Upgraded.
    extra/php81/php81-8.1.15-x86_64-1.txz: Upgraded.
    testing/packages/samba-4.17.5-x86_64-2.txz: Rebuilt.
    Build with the bundled Heimdal instead of the system MIT Kerberos, since MIT
    Kerberos has more issues when Samba is used as an AD DC. I'd appreciate any
    feedback on the "Samba on Slackware 15" thread on LQ about how well this
    works. Although it's not the sort of change I'd normally make in a -stable
    release such as Slackware 15.0, in this case I'm considering it if it can
    be done painlessly for any existing users... but I'll need to see some
    reports about this. I'd like to note that yes, of course we saw the
    "experimental" label in the configure flag we used to build Samba, but we
    also saw another prominent Linux distribution go ahead and use it anyway. :)
    And the Samba package built against MIT Kerberos cooked in the previous
    -current development cycle for a couple of years without any objections.
    Anyway, hopefully we'll get some testing from folks out there with networks
    that use AD and go from there.
    Thanks to Rowland Penny of the Samba team for clarifying this situation.
  • Thu, 02 Feb 2023 22:52:48 +0000
    Thu Feb 2 22:52:48 UTC 2023
    a/aaa_glibc-solibs-2.37-x86_64-1.txz: Upgraded.
    kde/akonadi-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-calendar-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-calendar-tools-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-contacts-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-import-wizard-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-mime-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-notes-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadi-search-22.12.2-x86_64-1.txz: Upgraded.
    kde/akonadiconsole-22.12.2-x86_64-1.txz: Upgraded.
    kde/akregator-22.12.2-x86_64-1.txz: Upgraded.
    kde/analitza-22.12.2-x86_64-1.txz: Upgraded.
    kde/ark-22.12.2-x86_64-1.txz: Upgraded.
    kde/artikulate-22.12.2-x86_64-1.txz: Upgraded.
    kde/audiocd-kio-22.12.2-x86_64-1.txz: Upgraded.
    kde/baloo-widgets-22.12.2-x86_64-1.txz: Upgraded.
    kde/blinken-22.12.2-x86_64-1.txz: Upgraded.
    kde/bomber-22.12.2-x86_64-1.txz: Upgraded.
    kde/bovo-22.12.2-x86_64-1.txz: Upgraded.
    kde/calendarsupport-22.12.2-x86_64-1.txz: Upgraded.
    kde/cantor-22.12.2-x86_64-1.txz: Upgraded.
    kde/cervisia-22.12.2-x86_64-1.txz: Upgraded.
    kde/dolphin-22.12.2-x86_64-1.txz: Upgraded.
    kde/dolphin-plugins-22.12.2-x86_64-1.txz: Upgraded.
    kde/dragon-22.12.2-x86_64-1.txz: Upgraded.
    kde/elisa-22.12.2-x86_64-1.txz: Upgraded.
    kde/eventviews-22.12.2-x86_64-1.txz: Upgraded.
    kde/falkon-22.12.2-x86_64-1.txz: Upgraded.
    kde/ffmpegthumbs-22.12.2-x86_64-1.txz: Upgraded.
    kde/filelight-22.12.2-x86_64-1.txz: Upgraded.
    kde/granatier-22.12.2-x86_64-1.txz: Upgraded.
    kde/grantlee-editor-22.12.2-x86_64-1.txz: Upgraded.
    kde/grantleetheme-22.12.2-x86_64-1.txz: Upgraded.
    kde/gwenview-22.12.2-x86_64-1.txz: Upgraded.
    kde/incidenceeditor-22.12.2-x86_64-1.txz: Upgraded.
    kde/itinerary-22.12.2-x86_64-1.txz: Upgraded.
    kde/juk-22.12.2-x86_64-1.txz: Upgraded.
    kde/k3b-22.12.2-x86_64-1.txz: Upgraded.
    kde/kaddressbook-22.12.2-x86_64-1.txz: Upgraded.
    kde/kalarm-22.12.2-x86_64-1.txz: Upgraded.
    kde/kalendar-22.12.2-x86_64-1.txz: Upgraded.
    kde/kalgebra-22.12.2-x86_64-1.txz: Upgraded.
    kde/kalzium-22.12.2-x86_64-1.txz: Upgraded.
    kde/kamera-22.12.2-x86_64-1.txz: Upgraded.
    kde/kamoso-22.12.2-x86_64-1.txz: Upgraded.
    kde/kanagram-22.12.2-x86_64-1.txz: Upgraded.
    kde/kapman-22.12.2-x86_64-1.txz: Upgraded.
    kde/kapptemplate-22.12.2-x86_64-1.txz: Upgraded.
    kde/kate-22.12.2-x86_64-1.txz: Upgraded.
    kde/katomic-22.12.2-x86_64-1.txz: Upgraded.
    kde/kbackup-22.12.2-x86_64-1.txz: Upgraded.
    kde/kblackbox-22.12.2-x86_64-1.txz: Upgraded.
    kde/kblocks-22.12.2-x86_64-1.txz: Upgraded.
    kde/kbounce-22.12.2-x86_64-1.txz: Upgraded.
    kde/kbreakout-22.12.2-x86_64-1.txz: Upgraded.
    kde/kbruch-22.12.2-x86_64-1.txz: Upgraded.
    kde/kcachegrind-22.12.2-x86_64-1.txz: Upgraded.
    kde/kcalc-22.12.2-x86_64-1.txz: Upgraded.
    kde/kcalutils-22.12.2-x86_64-1.txz: Upgraded.
    kde/kcharselect-22.12.2-x86_64-1.txz: Upgraded.
    kde/kcolorchooser-22.12.2-x86_64-1.txz: Upgraded.
    kde/kcron-22.12.2-x86_64-1.txz: Upgraded.
    kde/kde-dev-scripts-22.12.2-x86_64-1.txz: Upgraded.
    kde/kde-dev-utils-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdebugsettings-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdeconnect-kde-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdeedu-data-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdegraphics-mobipocket-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdegraphics-thumbnailers-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdenetwork-filesharing-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdenlive-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdepim-addons-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdepim-runtime-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdesdk-kio-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdesdk-thumbnailers-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdev-php-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdev-python-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdevelop-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdf-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdialog-22.12.2-x86_64-1.txz: Upgraded.
    kde/kdiamond-22.12.2-x86_64-1.txz: Upgraded.
    kde/keditbookmarks-22.12.2-x86_64-1.txz: Upgraded.
    kde/kfind-22.12.2-x86_64-1.txz: Upgraded.
    kde/kfloppy-22.12.2-x86_64-1.txz: Upgraded.
    kde/kfourinline-22.12.2-x86_64-1.txz: Upgraded.
    kde/kgeography-22.12.2-x86_64-1.txz: Upgraded.
    kde/kget-22.12.2-x86_64-1.txz: Upgraded.
    kde/kgoldrunner-22.12.2-x86_64-1.txz: Upgraded.
    kde/kgpg-22.12.2-x86_64-1.txz: Upgraded.
    kde/khangman-22.12.2-x86_64-1.txz: Upgraded.
    kde/khelpcenter-22.12.2-x86_64-1.txz: Upgraded.
    kde/kidentitymanagement-22.12.2-x86_64-1.txz: Upgraded.
    kde/kig-22.12.2-x86_64-1.txz: Upgraded.
    kde/kigo-22.12.2-x86_64-1.txz: Upgraded.
    kde/killbots-22.12.2-x86_64-1.txz: Upgraded.
    kde/kimagemapeditor-22.12.2-x86_64-1.txz: Upgraded.
    kde/kimap-22.12.2-x86_64-1.txz: Upgraded.
    kde/kio-extras-22.12.2-x86_64-1.txz: Upgraded.
    kde/kio-gdrive-22.12.2-x86_64-1.txz: Upgraded.
    kde/kio-zeroconf-22.12.2-x86_64-1.txz: Upgraded.
    kde/kipi-plugins-22.12.2-x86_64-1.txz: Upgraded.
    kde/kirigami-gallery-22.12.2-x86_64-1.txz: Upgraded.
    kde/kiriki-22.12.2-x86_64-1.txz: Upgraded.
    kde/kiten-22.12.2-x86_64-1.txz: Upgraded.
    kde/kitinerary-22.12.2-x86_64-1.txz: Upgraded.
    kde/kjumpingcube-22.12.2-x86_64-1.txz: Upgraded.
    kde/kldap-22.12.2-x86_64-1.txz: Upgraded.
    kde/kleopatra-22.12.2-x86_64-1.txz: Upgraded.
    kde/klickety-22.12.2-x86_64-1.txz: Upgraded.
    kde/klines-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmag-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmahjongg-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmail-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmail-account-wizard-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmailtransport-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmbox-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmime-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmines-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmix-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmousetool-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmouth-22.12.2-x86_64-1.txz: Upgraded.
    kde/kmplot-22.12.2-x86_64-1.txz: Upgraded.
    kde/knavalbattle-22.12.2-x86_64-1.txz: Upgraded.
    kde/knetwalk-22.12.2-x86_64-1.txz: Upgraded.
    kde/knights-22.12.2-x86_64-1.txz: Upgraded.
    kde/knotes-22.12.2-x86_64-1.txz: Upgraded.
    kde/kolf-22.12.2-x86_64-1.txz: Upgraded.
    kde/kollision-22.12.2-x86_64-1.txz: Upgraded.
    kde/kolourpaint-22.12.2-x86_64-1.txz: Upgraded.
    kde/kompare-22.12.2-x86_64-1.txz: Upgraded.
    kde/konqueror-22.12.2-x86_64-1.txz: Upgraded.
    kde/konquest-22.12.2-x86_64-1.txz: Upgraded.
    kde/konsole-22.12.2-x86_64-1.txz: Upgraded.
    kde/kontact-22.12.2-x86_64-1.txz: Upgraded.
    kde/kontactinterface-22.12.2-x86_64-1.txz: Upgraded.
    kde/kontrast-22.12.2-x86_64-1.txz: Upgraded.
    kde/konversation-22.12.2-x86_64-1.txz: Upgraded.
    kde/kopeninghours-22.12.2-x86_64-1.txz: Upgraded.
    kde/kopete-22.12.2-x86_64-1.txz: Upgraded.
    kde/korganizer-22.12.2-x86_64-1.txz: Upgraded.
    kde/kosmindoormap-22.12.2-x86_64-1.txz: Upgraded.
    kde/kpat-22.12.2-x86_64-1.txz: Upgraded.
    kde/kpimtextedit-22.12.2-x86_64-1.txz: Upgraded.
    kde/kpkpass-22.12.2-x86_64-1.txz: Upgraded.
    kde/kpmcore-22.12.2-x86_64-1.txz: Upgraded.
    kde/kpublictransport-22.12.2-x86_64-1.txz: Upgraded.
    kde/kqtquickcharts-22.12.2-x86_64-1.txz: Upgraded.
    kde/krdc-22.12.2-x86_64-1.txz: Upgraded.
    kde/kreversi-22.12.2-x86_64-1.txz: Upgraded.
    kde/krfb-22.12.2-x86_64-1.txz: Upgraded.
    kde/kross-interpreters-22.12.2-x86_64-1.txz: Upgraded.
    kde/kruler-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksanecore-22.12.2-x86_64-1.txz: Upgraded.
    kde/kshisen-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksirk-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksmtp-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksnakeduel-22.12.2-x86_64-1.txz: Upgraded.
    kde/kspaceduel-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksquares-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksudoku-22.12.2-x86_64-1.txz: Upgraded.
    kde/ksystemlog-22.12.2-x86_64-1.txz: Upgraded.
    kde/kteatime-22.12.2-x86_64-1.txz: Upgraded.
    kde/ktimer-22.12.2-x86_64-1.txz: Upgraded.
    kde/ktnef-22.12.2-x86_64-1.txz: Upgraded.
    kde/ktorrent-22.12.2-x86_64-1.txz: Upgraded.
    kde/ktouch-22.12.2-x86_64-1.txz: Upgraded.
    kde/kturtle-22.12.2-x86_64-1.txz: Upgraded.
    kde/kubrick-22.12.2-x86_64-1.txz: Upgraded.
    kde/kwalletmanager-22.12.2-x86_64-1.txz: Upgraded.
    kde/kwave-22.12.2-x86_64-1.txz: Upgraded.
    kde/kwordquiz-22.12.2-x86_64-1.txz: Upgraded.
    kde/libgravatar-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkcddb-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkcompactdisc-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkdcraw-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkdegames-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkdepim-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkeduvocdocument-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkexiv2-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkgapi-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkipi-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkleo-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkmahjongg-22.12.2-x86_64-1.txz: Upgraded.
    kde/libkomparediff2-22.12.2-x86_64-1.txz: Upgraded.
    kde/libksane-22.12.2-x86_64-1.txz: Upgraded.
    kde/libksieve-22.12.2-x86_64-1.txz: Upgraded.
    kde/libktorrent-22.12.2-x86_64-1.txz: Upgraded.
    kde/lokalize-22.12.2-x86_64-1.txz: Upgraded.
    kde/lskat-22.12.2-x86_64-1.txz: Upgraded.
    kde/mailcommon-22.12.2-x86_64-1.txz: Upgraded.
    kde/mailimporter-22.12.2-x86_64-1.txz: Upgraded.
    kde/marble-22.12.2-x86_64-1.txz: Upgraded.
    kde/markdownpart-22.12.2-x86_64-1.txz: Upgraded.
    kde/mbox-importer-22.12.2-x86_64-1.txz: Upgraded.
    kde/messagelib-22.12.2-x86_64-1.txz: Upgraded.
    kde/minuet-22.12.2-x86_64-1.txz: Upgraded.
    kde/okular-22.12.2-x86_64-1.txz: Upgraded.
    kde/palapeli-22.12.2-x86_64-1.txz: Upgraded.
    kde/parley-22.12.2-x86_64-1.txz: Upgraded.
    kde/partitionmanager-22.12.2-x86_64-1.txz: Upgraded.
    kde/picmi-22.12.2-x86_64-1.txz: Upgraded.
    kde/pim-data-exporter-22.12.2-x86_64-1.txz: Upgraded.
    kde/pim-sieve-editor-22.12.2-x86_64-1.txz: Upgraded.
    kde/pimcommon-22.12.2-x86_64-1.txz: Upgraded.
    kde/poxml-22.12.2-x86_64-1.txz: Upgraded.
    kde/print-manager-22.12.2-x86_64-1.txz: Upgraded.
    kde/rocs-22.12.2-x86_64-1.txz: Upgraded.
    kde/skanlite-22.12.2-x86_64-1.txz: Upgraded.
    kde/skanpage-22.12.2-x86_64-1.txz: Upgraded.
    kde/spectacle-22.12.2-x86_64-1.txz: Upgraded.
    kde/svgpart-22.12.2-x86_64-1.txz: Upgraded.
    kde/sweeper-22.12.2-x86_64-1.txz: Upgraded.
    kde/umbrello-22.12.2-x86_64-1.txz: Upgraded.
    kde/yakuake-22.12.2-x86_64-1.txz: Upgraded.
    kde/zanshin-22.12.2-x86_64-1.txz: Upgraded.
    l/glibc-2.37-x86_64-1.txz: Upgraded.
    l/glibc-i18n-2.37-x86_64-1.txz: Upgraded.
    l/glibc-profile-2.37-x86_64-1.txz: Upgraded.
    l/nodejs-19.6.0-x86_64-1.txz: Upgraded.
    l/poppler-23.02.0-x86_64-1.txz: Upgraded.
    l/xapian-core-1.4.22-x86_64-1.txz: Upgraded.
    n/openssh-9.2p1-x86_64-1.txz: Upgraded.
    This release contains fixes for two security problems and a memory safety
    problem. The memory safety problem is not believed to be exploitable, but
    upstream reports most network-reachable memory faults as security bugs.
    For more information, see:
    https://www.openssh.com/releasenotes.html#9.2
    (* Security fix *)

Slackware 15.0 (Stable)

			
  • Thu, 02 Feb 2023 22:52:48 +0000
    Thu Feb 2 22:52:48 UTC 2023
    patches/packages/openssh-9.2p1-x86_64-1_slack15.0.txz: Upgraded.
    This release contains fixes for two security problems and a memory safety
    problem. The memory safety problem is not believed to be exploitable, but
    upstream reports most network-reachable memory faults as security bugs.
    This update contains some potentially incompatible changes regarding the
    scp utility. For more information, see:
    https://www.openssh.com/releasenotes.html#9.0
    For more information, see:
    https://www.openssh.com/releasenotes.html#9.2
    (* Security fix *)
  • Wed, 01 Feb 2023 22:27:31 +0000
    Wed Feb 1 22:27:31 UTC 2023
    patches/packages/apr-1.7.2-x86_64-1_slack15.0.txz: Upgraded.
    This update fixes security issues:
    Integer Overflow or Wraparound vulnerability in apr_encode functions of
    Apache Portable Runtime (APR) allows an attacker to write beyond bounds
    of a buffer. (CVE-2022-24963)
    Restore fix for out-of-bounds array dereference in apr_time_exp*() functions.
    (This issue was addressed as CVE-2017-12613 in APR 1.6.3 and
    later 1.6.x releases, but was missing in 1.7.0.) (CVE-2021-35940)
    For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-24963
    https://www.cve.org/CVERecord?id=CVE-2021-35940
    https://www.cve.org/CVERecord?id=CVE-2017-12613
    (* Security fix *)
    patches/packages/apr-util-1.6.3-x86_64-1_slack15.0.txz: Upgraded.
    This update fixes a security issue:
    Integer Overflow or Wraparound vulnerability in apr_base64 functions
    of Apache Portable Runtime Utility (APR-util) allows an attacker to
    write beyond bounds of a buffer. (CVE-2022-25147)
    For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-25147
    (* Security fix *)
    patches/packages/mozilla-thunderbird-102.7.1-x86_64-1_slack15.0.txz: Upgraded.
    This release contains security fixes and improvements.
    For more information, see:
    https://www.mozilla.org/en-US/thunderbird/102.7.1/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2023-04/
    https://www.cve.org/CVERecord?id=CVE-2023-0430
    (* Security fix *)
  • Thu, 26 Jan 2023 00:34:41 +0000
    Thu Jan 26 00:34:41 UTC 2023
    patches/packages/bind-9.16.37-x86_64-1_slack15.0.txz: Upgraded.
    This update fixes bugs and the following security issues:
    An UPDATE message flood could cause :iscman:`named` to exhaust all
    available memory. This flaw was addressed by adding a new
    :any:`update-quota` option that controls the maximum number of
    outstanding DNS UPDATE messages that :iscman:`named` can hold in a
    queue at any given time (default: 100).
    :iscman:`named` could crash with an assertion failure when an RRSIG
    query was received and :any:`stale-answer-client-timeout` was set to a
    non-zero value. This has been fixed.
    :iscman:`named` running as a resolver with the
    :any:`stale-answer-client-timeout` option set to any value greater
    than ``0`` could crash with an assertion failure, when the
    :any:`recursive-clients` soft quota was reached. This has been fixed.
    For more information, see:
    https://kb.isc.org/docs/cve-2022-3094
    https://kb.isc.org/docs/cve-2022-3736
    https://kb.isc.org/docs/cve-2022-3924
    https://www.cve.org/CVERecord?id=CVE-2022-3094
    https://www.cve.org/CVERecord?id=CVE-2022-3736
    https://www.cve.org/CVERecord?id=CVE-2022-3924
    (* Security fix *)
    patches/packages/vim-9.0.1241-x86_64-1_slack15.0.txz: Upgraded.
    Fixed a security issue:
    Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225.
    Thanks to marav for the heads-up.
    For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-0433
    (* Security fix *)
    patches/packages/vim-gvim-9.0.1241-x86_64-1_slack15.0.txz: Upgraded.
    testing/packages/bind-9.18.11-x86_64-1_slack15.0.txz: Upgraded.
    This update fixes bugs and the following security issues:
    An UPDATE message flood could cause :iscman:`named` to exhaust all
    available memory. This flaw was addressed by adding a new
    :any:`update-quota` option that controls the maximum number of
    outstanding DNS UPDATE messages that :iscman:`named` can hold in a
    queue at any given time (default: 100).
    :iscman:`named` could crash with an assertion failure when an RRSIG
    query was received and :any:`stale-answer-client-timeout` was set to a
    non-zero value. This has been fixed.
    :iscman:`named` running as a resolver with the
    :any:`stale-answer-client-timeout` option set to any value greater
    than ``0`` could crash with an assertion failure, when the
    :any:`recursive-clients` soft quota was reached. This has been fixed.
    For more information, see:
    https://kb.isc.org/docs/cve-2022-3094
    https://kb.isc.org/docs/cve-2022-3736
    https://kb.isc.org/docs/cve-2022-3924
    https://www.cve.org/CVERecord?id=CVE-2022-3094
    https://www.cve.org/CVERecord?id=CVE-2022-3736
    https://www.cve.org/CVERecord?id=CVE-2022-3924
    (* Security fix *)