ChangeLog for: 2018-10-31 23:49:36
d/subversion-1.11.0-x86_64-1.txz: Upgraded.
l/SDL2-2.0.9-x86_64-1.txz: Upgraded.
l/SDL2_gfx-1.0.4-x86_64-1.txz: Upgraded.
l/SDL2_image-2.0.4-x86_64-1.txz: Upgraded.
l/SDL2_mixer-2.0.4-x86_64-1.txz: Upgraded.
n/autofs-5.1.5-x86_64-1.txz: Upgraded.
n/curl-7.62.0-x86_64-1.txz: Upgraded.
This release fixes the following security issues:
SASL password overflow via integer overflow.
Use-after-free in handle close.
Warning message out-of-buffer read.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16840
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842
(* Security fix *)
xap/mozilla-thunderbird-60.3.0-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.0/releasenotes/