LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 01-12-2019, 08:19 PM   #796
wichn
LQ Newbie
 
Registered: Jan 2019
Posts: 5

Rep: Reputation: Disabled

zsh
https://security.gentoo.org/glsa/201805-10
https://nvd.nist.gov/vuln/detail/CVE-2018-0502
https://nvd.nist.gov/vuln/detail/CVE-2018-13259

Last edited by wichn; 01-12-2019 at 08:22 PM.
 
2 members found this post helpful.
Old 01-15-2019, 06:09 PM   #797
drgibbon
Member
 
Registered: Nov 2014
Distribution: Slackware64 14.2
Posts: 426

Rep: Reputation: 248Reputation: 248Reputation: 248
A bunch of CVEs for scp clients:
Quote:
SCP clients from multiple vendors are susceptible to a malicious scp server performing
unauthorized changes to target directory and/or client output manipulation.
[...]
Malicious scp server can write arbitrary files to scp target directory, change the
target directory permissions and to spoof the client output.
Write-up at The Register.
 
3 members found this post helpful.
Old 01-23-2019, 11:34 AM   #798
mats_b_tegner
Member
 
Registered: Nov 2009
Location: Gothenburg, Sweden
Distribution: Slackware64
Posts: 482

Rep: Reputation: 265Reputation: 265Reputation: 265
Slackware 14.2 kernel is vulnerable to CVE 2019-3701
(https://www.securityfocus.com/bid/106443)

Kernel 4.4.172 includes a fix.
https://cdn.kernel.org/pub/linux/ker...ngeLog-4.4.172
Quote:
commit 693ae291197429f404e7d9c191e1541f61925278
Author: Oliver Hartkopp
Date: Fri Jan 4 15:55:26 2019 +0100
can: gw: ensure DLC boundaries after CAN frame modification
...This fixes CVE-2019-3701.

Last edited by mats_b_tegner; 01-26-2019 at 12:41 PM. Reason: Fix added.
 
1 members found this post helpful.
Old 01-23-2019, 02:49 PM   #799
volkerdi
Slackware Maintainer
 
Registered: Dec 2002
Location: Minnesota
Distribution: Slackware! :-)
Posts: 1,640

Rep: Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018Reputation: 5018
Quote:
Originally Posted by mats_b_tegner View Post
Slackware 14.2 kernel is vulnerable to CVE 2019-3701
(https://www.securityfocus.com/bid/106443)

I haven't seen a fix for kernel 4.4.y yet.
According to https://bugzilla.suse.com/show_bug.cgi?id=1120386 this bug is only "exploitable" by root.
 
6 members found this post helpful.
Old 02-01-2019, 07:20 AM   #800
Thom1b
Member
 
Registered: Mar 2010
Location: France
Distribution: Slackware
Posts: 231

Rep: Reputation: 179Reputation: 179
mariadb-10.0.38 is released with two security fixes.
https://mariadb.com/kb/en/library/ma...release-notes/

This is also the last 10.0 mariadb release if I understood correctly.

Last edited by Thom1b; 02-01-2019 at 07:37 AM.
 
1 members found this post helpful.
  


Reply

Tags
exploit, security, slackware


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[Slackware Security]: Some pending vulnerabilities... mancha Slackware 7 08-22-2013 10:08 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 05:15 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration