Patch/Bind Updates for Slackware
Posted on: 09/14/2012 09:26 AM
The following two security updates has been released for Slackware: bind (SSA:2012-257-01) and patch (SSA:2012-257-02)
bind (SSA:2012-257-01)
New bind packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix a security issue.
Here are the details from the Slackware 13.37 ChangeLog: +--------------------------+ patches/packages/bind-9.7.6_P3-i486-1_slack13.37.txz: Upgraded. This update fixes a security issue where named could crash on a specially crafted record. [RT #30416] (* Security fix *) +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Upgrade the package as root: # upgradepkg bind-9.7.6_P3-i486-1_slack13.37.txz
Then, restart the name server:
# /etc/rc.d/rc.bind restart
[slackware-security] patch (SSA:2012-257-02)
patch (SSA:2012-257-02)
New patch packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix a security issue.
Here are the details from the Slackware 13.37 ChangeLog: +--------------------------+ patches/packages/patch-2.7-i486-1_slack13.37.txz: Upgraded. This version of patch ignores destination filenames that are absolute or that contain a component of "..", unless such a filename is provided as an argument. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4651 (* Security fix *) +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.