ChangeLog for: 2014-08-01 22:13:18
n/dhcpcd-6.0.5-x86_64-3.txz: Rebuilt.
This update fixes a security issue where a specially crafted packet
received from a malicious DHCP server causes dhcpcd to enter an infinite
loop causing a denial of service.
Thanks to Tobias Stoeckmann for the bug report.
(* Security fix *)
n/samba-4.1.11-x86_64-1.txz: Upgraded.
This update fixes a remote code execution attack on unauthenticated nmbd
NetBIOS name services. A malicious browser can send packets that may
overwrite the heap of the target nmbd NetBIOS name services daemon.
It may be possible to use this to generate a remote code execution
vulnerability as the superuser (root).
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3560
(* Security fix *)
xap/xscreensaver-5.29-x86_64-2.txz: Rebuilt.
Disabled nag screen that says "This version of XScreenSaver is very old!
Please upgrade!" when the age of the software exceeds 12 months.