[Slackware security] vulnerabilities outstanding 20140101
Hello.
Some vulnerabilities of varying severity...
--mancha |
Update 20140106
|
Update 20140107
|
Quote:
http://www.linuxfromscratch.org/patc...syntax-1.patch And then this patch from Gentoo on 1.0.1f: http://sources.gentoo.org/cgi-bin/vi...ch?view=markup Mats |
Quote:
openssl-0.9.8y-perl-5.18.diff openssl-1.0.1f-perl-5.18.diff --mancha |
Quote:
|
I've upgraded curl, php and samba to their latest versions. Just download the sources and compile using the SlackBuild-scripts from /source. Should we notify PatV?
|
Quote:
I emailed Pat about a week and a half before starting this thread but I haven't sent a 2nd email with more recent news (e.g. openssl, libxfont). A new email might be worthwhile in case he's not visiting LQ. Feel free to send one. --mancha |
samba 4.1.4
The last stable released of samba is version 4.1.4: http://www.samba.org/samba/history/samba-4.1.4.html
The previous version (4.1.3) resolved some security holes, but maybe worth have the last release with more bug fixes. |
I appreciate that you're keeping on top of the security issues.
Given how single-point-of-failure it is having Pat in control and these things often going unfixed for so long, it's really looking like I'm going to have to move on from slackware at last. |
PHP 5.5.24 has been released. No security fixes as far as I know, but it's a recommended upgrade:
http://www.php.net/ChangeLog-5.php#5.4.24 Mats |
Bye, corvid! Remember to write if you find work and hang by your thumbs. [Bob & Ray Radio Program sign-off] I'll move on when Pat does. He's done fine with me for twenty years. I've tried the rest, but still use the best.
Thank you, mancha for staying on top of the SSL security patches. (Openssl-1.0.1e is the version on the mirrors.) |
Quote:
I hope that you find a distro that is more to your liking. |
If you look at the patches, few of them are actually security vulnerabilities, and none of them are critical. I'm sure Pat V. would have pushed updates if any of them were critical security vulnerabilities.
In other words, don't let this thread chase you away from Slackware. gnupg 1.x is up-to-date at 1.4.16 BTW. |
Quote:
|
All times are GMT -5. The time now is 10:51 PM. |