Repository 32bit  Forum
Repository 64bit  Wiki
Sat Dec 24 18:14:51 UTC 2016
patches/packages/expat-2.2.0-i586-1_slack14.2.txz: Upgraded.
  This update fixes bugs and security issues:
  Multiple integer overflows in XML_GetBuffer.
  Fix crash on malformed input.
  Improve insufficient fix to CVE-2015-1283 / CVE-2015-2716.
  Use more entropy for hash initialization.
  Resolve troublesome internal call to srand.
  For more information, see:
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1283
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0718
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4472
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5300
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6702
  (* Security fix *)