ChangeLog for: 2012-12-07 02:41:59

ap/sqlite-3.7.14.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
d/ruby-1.9.3_p327-x86_64-1.txz:  Upgraded.
  This release fixes a hash-flooding DoS vulnerability and many other bugs.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5371
  (* Security fix *)
l/libssh-0.5.3-x86_64-1.txz:  Upgraded.
  This release fixes several security bugs.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4559
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4560
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4561
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4562
  (* Security fix *)
l/libxml2-2.8.0-x86_64-2.txz:  Rebuilt.
  Patched a heap-based buffer underflow in the xmlParseAttValueComplex
  function in parser.c in libxml2 2.9.0 and earlier that could allow a
  remote attacker to cause a denial of service or possibly execute
  arbitrary code via crafted entities in an XML document.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5134
  (* Security fix *)
n/bind-9.9.2_P1-x86_64-1.txz:  Upgraded.
  This release addresses some denial-of-service and other bugs.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5688
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5166
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3817
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1667
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3868
    https://kb.isc.org/article/AA-00829
  (* Security fix *)