ChangeLog for: 2024-06-11 22:09:01

ap/alsa-utils-1.2.12-x86_64-1.txz:  Upgraded.
ap/cups-2.4.9-x86_64-1.txz:  Upgraded.
  This update fixes bugs and a security issue:
  When starting the cupsd server with a Listen configuration item pointing
  to a symbolic link, the cupsd process can be caused to perform an arbitrary
  chmod of the provided argument, providing world-writable access to the
  target.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2024-35235
  (* Security fix *)
l/alsa-lib-1.2.12-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.2.12-x86_64-1.txz:  Upgraded.
l/aom-3.9.1-x86_64-1.txz:  Upgraded.
l/mozjs115-115.12.0esr-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-127.0-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/127.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2024-25/
    https://www.cve.org/CVERecord?id=CVE-2024-5687
    https://www.cve.org/CVERecord?id=CVE-2024-5688
    https://www.cve.org/CVERecord?id=CVE-2024-5689
    https://www.cve.org/CVERecord?id=CVE-2024-5690
    https://www.cve.org/CVERecord?id=CVE-2024-5691
    https://www.cve.org/CVERecord?id=CVE-2024-5692
    https://www.cve.org/CVERecord?id=CVE-2024-5693
    https://www.cve.org/CVERecord?id=CVE-2024-5694
    https://www.cve.org/CVERecord?id=CVE-2024-5695
    https://www.cve.org/CVERecord?id=CVE-2024-5696
    https://www.cve.org/CVERecord?id=CVE-2024-5697
    https://www.cve.org/CVERecord?id=CVE-2024-5698
    https://www.cve.org/CVERecord?id=CVE-2024-5699
    https://www.cve.org/CVERecord?id=CVE-2024-5700
    https://www.cve.org/CVERecord?id=CVE-2024-5701
  (* Security fix *)
xfce/xfce4-settings-4.18.6-x86_64-1.txz:  Upgraded.