Repository 32bit  Forum
Repository 64bit  Wiki
Fri Dec 30 19:29:13 UTC 2016
patches/packages/libpng-1.6.27-x86_64-1_slack14.2.txz: Upgraded.
  This release fixes an old NULL pointer dereference bug in png_set_text_2()
  discovered and patched by Patrick Keshishian. The potential "NULL
  dereference" bug has existed in libpng since version 0.71 of June 26, 1995.
  To be vulnerable, an application has to load a text chunk into the png
  structure, then delete all text, then add another text chunk to the same
  png structure, which seems to be an unlikely sequence, but it has happened.
  For more information, see:
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10087
  (* Security fix *)
patches/packages/mozilla-thunderbird-45.6.0-x86_64-1_slack14.2.txz: Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
  https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899
  (* Security fix *)
patches/packages/seamonkey-2.46-x86_64-1_slack14.2.txz: Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
  http://www.seamonkey-project.org/releases/seamonkey2.46
  (* Security fix *)
patches/packages/seamonkey-solibs-2.46-x86_64-1_slack14.2.txz: Upgraded.