ChangeLog for: 2017-10-27 21:34:35
ap/rpm-4.14.0-x86_64-2.txz: Rebuilt.
Recompiled to fix linking to old library versions. Thanks to USUARIONUEVO.
l/SDL2_mixer-2.0.2-x86_64-1.txz: Upgraded.
l/libmcs-0.7.2-x86_64-1.txz: Removed.
l/libmowgli-1.0.0-x86_64-1.txz: Removed.
l/pyrex-0.9.9-x86_64-2.txz: Removed.
n/php-5.6.32-x86_64-1.txz: Upgraded.
Several security bugs were fixed in this release:
Out of bounds read in timelib_meridian().
The arcfour encryption stream filter crashes PHP.
Applied upstream patch for PCRE (CVE-2016-1283).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1283
(* Security fix *)
n/wget-1.19.2-x86_64-1.txz: Upgraded.
This update fixes stack and heap overflows in in HTTP protocol handling.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13089
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13090
(* Security fix *)