Wed Sep 21 18:30:30 UTC 2022
ap/cups-2.4.2-i586-2.txz: Rebuilt.
Install pkgconfig file to the proper directory.
l/libbluray-1.3.3-i586-1.txz: Upgraded.
l/system-config-printer-1.5.18-i586-1.txz: Upgraded.
n/bind-9.18.7-i586-1.txz: Upgraded.
This update fixes bugs and the following security issues:
Fix memory leak in EdDSA verify processing.
Fix serve-stale crash that could happen when stale-answer-client-timeout
was set to 0 and there was a stale CNAME in the cache for an incoming query.
Fix memory leaks in the DH code when using OpenSSL 3.0.0 and later versions.
The openssldh_compare(), openssldh_paramcompare(), and openssldh_todns()
functions were affected.
When an HTTP connection was reused to get statistics from the stats channel,
and zlib compression was in use, each successive response sent larger and
larger blocks of memory, potentially reading past the end of the allocated
buffer.
Prevent excessive resource use while processing large delegations.
For more information, see:
https://kb.isc.org/docs/cve-2022-38178
https://kb.isc.org/docs/cve-2022-3080
https://kb.isc.org/docs/cve-2022-2906
https://kb.isc.org/docs/cve-2022-2881
https://kb.isc.org/docs/cve-2022-2795
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38178
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3080
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2906
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2881
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2795
(* Security fix *)
n/nghttp2-1.50.0-i586-1.txz: Upgraded.
Distro