ChangeLog for: 2018-02-01 19:24:15
a/bash-4.4.018-x86_64-1.txz: Upgraded.
a/kernel-generic-4.14.16-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.16-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.16-x86_64-1.txz: Upgraded.
ap/cups-filters-1.20.0-x86_64-1.txz: Upgraded.
ap/mariadb-10.2.12-x86_64-1.txz: Upgraded.
d/gdb-8.1-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.16-x86-1.txz: Upgraded.
d/perl-5.26.1-x86_64-4.txz: Rebuilt.
Removed dangling c2ph symlinks. Thanks to Tim Thomas.
Updated to DBD-mysql-4.044, DBI-1.640, URI-1.73, and libnet-3.11.
k/kernel-source-4.14.16-noarch-1.txz: Upgraded.
l/dbus-glib-0.110-x86_64-1.txz: Upgraded.
l/harfbuzz-1.7.5-x86_64-1.txz: Upgraded.
l/libdvdnav-6.0.0-x86_64-1.txz: Upgraded.
l/libdvdread-6.0.0-x86_64-1.txz: Upgraded.
l/libunwind-1.2.1-x86_64-2.txz: Rebuilt.
Removed dangling .a symlink. Thanks to Tim Thomas.
l/sip-4.19.7-x86_64-1.txz: Upgraded.
n/dhcp-4.4.0-x86_64-1.txz: Upgraded.
n/dovecot-2.3.0-x86_64-1.txz: Upgraded.
n/postfix-3.2.5-x86_64-1.txz: Upgraded.
n/rsync-3.1.3-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Fixed a buffer overrun in the protocol's handling of xattr names and
ensure that the received name is null terminated.
Fix an issue with --protect-args where the user could specify the arg in
the protected-arg list and short-circuit some of the arg-sanitizing code.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16548
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5764
(* Security fix *)
x/libevdev-1.5.8-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.