diff options
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 01c2a8119..8dafde85c 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,16 @@ +Fri Apr 12 19:08:59 UTC 2024 +extra/php81/php81-8.1.28-x86_64-1_slack15.0.txz: Upgraded. + This update fixes security issues: + Command injection via array-ish $command parameter of proc_open. + __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix. + Password_verify can erroneously return true, opening ATO risk. + For more information, see: + https://www.php.net/ChangeLog-8.php#8.1.28 + https://www.cve.org/CVERecord?id=CVE-2024-1874 + https://www.cve.org/CVERecord?id=CVE-2024-2756 + https://www.cve.org/CVERecord?id=CVE-2024-3096 + (* Security fix *) ++--------------------------+ Mon Apr 8 18:44:37 UTC 2024 patches/packages/libarchive-3.7.3-x86_64-1_slack15.0.txz: Upgraded. This update fixes a security issue: |