Slackware Linux has issued security advisories for bind and tigervnc packages targeting version 15.0 and -current systems. The bind package resolves an issue regarding unbounded NSEC3 iterations, whereas the TigerVNC upgrade specifically targets a flaw allowing other users to manipulate screen contents via x0vncserver. Administrators must download the new packages from the listed FTP sites and verify their signatures before executing the upgradepkg utility as root.

bind (SSA:2026-084-01)
tigervnc (SSA:2026-084-02)

bind (SSA:2026-084-01)

bind (SSA:2026-084-01)

New bind packages are available for Slackware 15.0 and -current to
fix security issues.

Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/bind-9.18.47-i586-1_slack15.0.txz: Upgraded.
This update fixes a security issue:
Fix unbounded NSEC3 iterations when validating referrals to unsigned
delegations.
For more information, see:
https://kb.isc.org/docs/cve-2026-1519
https://www.cve.org/CVERecord?id=CVE-2026-1519
(* Security fix *)
+--------------------------+

Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
( http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/bind-9.18.47-i586-1_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/bind-9.18.47-x86_64-1_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/bind-9.20.21-i686-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/bind-9.20.21-x86_64-1.txz

MD5 signatures:
+-------------+

Slackware 15.0 package:
b78069f8859ffce5cfc1da3a62c62d8a bind-9.18.47-i586-1_slack15.0.txz

Slackware x86_64 15.0 package:
1cbdae260d411398becc5f1268a18056 bind-9.18.47-x86_64-1_slack15.0.txz

Slackware -current package:
3b23700f81b67437e09376a14e0bc325 n/bind-9.20.21-i686-1.txz

Slackware x86_64 -current package:
7a55690b81ec1060888c3c20637c9994 n/bind-9.20.21-x86_64-1.txz

Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg bind-9.18.47-i586-1_slack15.0.txz

+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key

tigervnc (SSA:2026-084-02)

tigervnc (SSA:2026-084-02)

New tigervnc packages are available for Slackware 15.0 and -current to
fix security issues.

Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
extra/tigervnc/tigervnc-1.16.1-i586-1_slack15.0.txz: Upgraded.
The bug fix release TigerVNC 1.16.1 is now available. This release is
primarily a security release to fix an issue in x0vncserver, where other
users can observe and manipulate the screen contents. Users of
x0vncserver are advised to update immediately.
The release also contains a fix for using the Plain security type with
the new w0vncserver, as well as some translation updates.
(* Security fix *)
+--------------------------+

Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
( http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/extra/tigervnc/tigervnc-1.16.1-i586-1_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/extra/tigervnc/tigervnc-1.16.1-x86_64-1_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/extra/tigervnc/tigervnc-1.16.1-i686-1.txz

Updated packages for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/extra/tigervnc/tigervnc-1.16.1-x86_64-1.txz

MD5 signatures:
+-------------+

Slackware 15.0 package:
26e58cff852cc91ee81bb9c071479a3b tigervnc-1.16.1-i586-1_slack15.0.txz

Slackware x86_64 15.0 package:
8ffa47ea948563f5d32f4f089607fdd4 tigervnc-1.16.1-x86_64-1_slack15.0.txz

Slackware -current package:
e04aca19b8ebf0284f6f84ad495cb837 tigervnc-1.16.1-i686-1.txz

Slackware x86_64 -current package:
a755c0a1b853390dfacb989c81bf5886 tigervnc-1.16.1-x86_64-1.txz

Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg tigervnc-1.16.1-i586-1_slack15.0.txz

+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key