14 updates. Including a (* Security fix *)!

  • 14 updates. Including a (* Security fix *)!

    New

    Slackware Chanagelog/Security wrote:

    Thu Dec 6 04:38:11 UTC 2018
    a/kernel-generic-4.19.7-i586-1.txz: Upgraded.
    a/kernel-generic-smp-4.19.7_smp-i686-1.txz: Upgraded.
    a/kernel-huge-4.19.7-i586-1.txz: Upgraded.
    a/kernel-huge-smp-4.19.7_smp-i686-1.txz: Upgraded.
    a/kernel-modules-4.19.7-i586-1.txz: Upgraded.
    a/kernel-modules-smp-4.19.7_smp-i686-1.txz: Upgraded.
    d/kernel-headers-4.19.7_smp-x86-1.txz: Upgraded.
    k/kernel-source-4.19.7_smp-noarch-1.txz: Upgraded.
    n/gnutls-3.6.5-i586-1.txz: Upgraded.
    This update fixes a security issue:
    Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and
    padding oracle verification.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868
    (* Security fix *)
    n/nettle-3.4.1-i586-1.txz: Upgraded.
    This update fixes a security issue:
    A Bleichenbacher type side-channel based padding oracle attack was found
    in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5
    data. An attacker who is able to run a process on the same physical core
    as the victim process, could use this flaw to extract plaintext or in some
    cases downgrade any TLS connections to a vulnerable server.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869
    (* Security fix *)
    extra/linux-4.19.7-nosmp-sdk/*: Upgraded.
    isolinux/initrd.img: Rebuilt.
    kernels/*: Upgraded.
    usb-and-pxe-installers/usbboot.img: Rebuilt.
    Source: mirrors.slackware.com/slackwar…src=feeds&time=1544071091