diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2022-03-01 05:05:48 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2022-03-02 13:30:01 +0100 |
| commit | 87f850786eeee49785ae2ec15bebc53bbe17c637 (patch) | |
| tree | dbf5a6a5c984b14c6e7a071eff61ef76f263cec3 /ChangeLog.txt | |
| parent | a737ba20e244482cd1b3a6e828fed474dd0ef9c0 (diff) | |
| download | current-87f850786eeee49785ae2ec15bebc53bbe17c637.tar.gz current-87f850786eeee49785ae2ec15bebc53bbe17c637.tar.xz | |
Tue Mar 1 05:05:48 UTC 202220220301050548_15.0
patches/packages/libxml2-2.9.13-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and the following security issues:
Use-after-free of ID and IDREF attributes
(Thanks to Shinji Sato for the report)
Use-after-free in xmlXIncludeCopyRange (David Kilzer)
Fix Null-deref-in-xmlSchemaGetComponentTargetNs (huangduirong)
Fix memory leak in xmlXPathCompNodeTest
Fix null pointer deref in xmlStringGetNodeList
Fix several memory leaks found by Coverity (David King)
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23308
(* Security fix *)
patches/packages/libxslt-1.1.35-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and the following security issues:
Fix use-after-free in xsltApplyTemplates
Fix memory leak in xsltDocumentElem (David King)
Fix memory leak in xsltCompileIdKeyPattern (David King)
Fix double-free with stylesheets containing entity nodes
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30560
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index c3c143a8f..fca531204 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,26 @@ +Tue Mar 1 05:05:48 UTC 2022 +patches/packages/libxml2-2.9.13-x86_64-1_slack15.0.txz: Upgraded. + This update fixes bugs and the following security issues: + Use-after-free of ID and IDREF attributes + (Thanks to Shinji Sato for the report) + Use-after-free in xmlXIncludeCopyRange (David Kilzer) + Fix Null-deref-in-xmlSchemaGetComponentTargetNs (huangduirong) + Fix memory leak in xmlXPathCompNodeTest + Fix null pointer deref in xmlStringGetNodeList + Fix several memory leaks found by Coverity (David King) + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23308 + (* Security fix *) +patches/packages/libxslt-1.1.35-x86_64-1_slack15.0.txz: Upgraded. + This update fixes bugs and the following security issues: + Fix use-after-free in xsltApplyTemplates + Fix memory leak in xsltDocumentElem (David King) + Fix memory leak in xsltCompileIdKeyPattern (David King) + Fix double-free with stylesheets containing entity nodes + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30560 + (* Security fix *) ++--------------------------+ Fri Feb 25 00:03:28 UTC 2022 patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txz: Upgraded. This update fixes bugs and security issues. |