Slackware Security Updates: Mozilla, kdenetwork, fetchmail, zlib and gxine

Wow, multiple security update in one day. Details of the updates are as follows:

New Mozilla packages are available for Slackware 10.0, 10.1, and -current to fix various security issues and bugs. See the Mozilla site for a complete list of the issues patched:

http://www.mozilla.org/projects/security/known-vulnerabilities.html#Mozilla

New kdenetwork packages are available for Slackware 10.0, 10.1, and -current to fix security issues. Overflows in libgadu (used by kopete) that can cause a denial of service or arbitrary code execution.

More details about this vulnerability may be found here:
http://www.kde.org/info/security/advisory-20050721-1.txt

New fetchmail packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix security issues. Connecting to a malicious or compromised POP3 server may overflow fetchmail’s stack causing a crash or the execution of arbitrary code.

For more information about this issue, see:
http://fetchmail.berlios.de/fetchmail-SA-2005-01.txt

New zlib packages are available for Slackware 10.0, 10.1, and -current to fix an additional crash issue. zlib 1.1.x is not affected.

New gxine packages are available for Slackware 10.0, 10.1, and -current to fix a format string security issue.

More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1692

Get your updated packages from the Slackware Package Browser. Lazier and smarter people like me will use updating tools such as Swaret or slapt-get 🙂

Only one response to “Slackware Security Updates: Mozilla, kdenetwork, fetchmail, zlib and gxine” so far.

  1. farking Says:

    i yeah i am a very very lazy and use swaret and let it do the hard work for me while i’m sleeping or watching porn 🙂