errata: 9.1 9.1-systemd

renodr Sat, 11 Apr 2020 17:33:45 -0700

Author: renodr
Date: Sat Apr 11 17:33:09 2020
New Revision: 1544

Log:
Errata: Update thunderbird errata
Errata: Update Wireshark errata
Errata: Add errata for pdfbox and fontbox in fop


Modified:
   html/trunk/blfs/errata/9.1-systemd/index.html
   html/trunk/blfs/errata/9.1/index.html

Modified: html/trunk/blfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1-systemd/index.html       Tue Apr  7 09:48:20 
2020        (r1543)
+++ html/trunk/blfs/errata/9.1-systemd/index.html       Sat Apr 11 17:33:09 
2020        (r1544)
@@ -43,6 +43,12 @@
            number of tests has not added up ever since the rustc tests were 
added
            to BLFS. Now fixed, using an egrep command.</li>
 
+       <li>It was discovered that after BLFS 9.1 was released, the version of
+           PDFBox and FontBox used in fop was no longer available. Please use
+           the 2.0.19 version of these packages instead. The md5sum for
+           pdfbox-2.0.19.jar is 1c085389e055c957b07c25c8443de728. The md5sum
+           for fontbox-2.0.19.jar is 74b3b8ee7eef40b0aff5ca5aa07d96f7.</li>
+
      </ul>
 
      <h2>Known Security Vulnerabilities</h2>
@@ -67,8 +73,8 @@
       <a href="../../view/systemd/basicnet/avahi.html">avahi-0.8</a>.</li>
       <li>After release, security vulnerabilities were discovered in Wireshark
           that could cause Wireshark to crash. To fix these, update to
-          Wireshark-3.2.2 or later using the instructions in
-          <a 
href="../../view/systemd/basicnet/wireshark.html">Wireshark-3.2.2</a>.</li>
+          Wireshark-3.2.3 or later using the instructions in
+          <a 
href="../../view/systemd/basicnet/wireshark.html">Wireshark-3.2.3</a>.</li>
       <li>After release, several security vulnerabilities were discovered in
           PHP. These included access violations, heap buffer overflows, and
           null pointer dereference vulnerabilities. To fix these, update to
@@ -88,10 +94,10 @@
           Firefox. Two of these vulnerabilities are 0days that are being used
           in the wild. Please update immediately using the instructions in
           <a 
href="../../view/systemd/xsoft/firefox.html">Firefox-68.7.0</a>.</li>
-      <li>After release, several security vulnerabilities were discovered in
-          Thunderbird. To fix these, update to Thunderbird-68.6.0 or later 
using
-          the instructions in
-          <a 
href="../../view/systemd/xsoft/thunderbird.html">Thunderbird-68.6.0</a>.</li>
+      <li>After release, several critical security vulnerabilities were 
+          discovered in Thunderbird. To fix these, update to Thunderbird-68.7.0
+          or later using the instructions in
+          <a 
href="../../view/systemd/xsoft/thunderbird.html">Thunderbird-68.7.0</a>.</li>
       <li>After release, a privilege escalation vulnerability was discovered in
           Bubblewrap. To fix this vulnerability, update to Bubblewrap-0.4.1 or
           later using the instructions in

Modified: html/trunk/blfs/errata/9.1/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1/index.html       Tue Apr  7 09:48:20 2020        
(r1543)
+++ html/trunk/blfs/errata/9.1/index.html       Sat Apr 11 17:33:09 2020        
(r1544)
@@ -41,6 +41,12 @@
            number of tests has not added up ever since the rustc tests were 
added
            to BLFS. Now fixed, using an egrep command.</li>
 
+       <li>It was discovered that after BLFS 9.1 was released, the version of
+           PDFBox and FontBox used in fop was no longer available. Please use 
+           the 2.0.19 version of these packages instead. The md5sum for
+           pdfbox-2.0.19.jar is 1c085389e055c957b07c25c8443de728. The md5sum
+           for fontbox-2.0.19.jar is 74b3b8ee7eef40b0aff5ca5aa07d96f7.</li>
+
      </ul>
 
      <h2>Known Security Vulnerabilities</h2>
@@ -64,8 +70,8 @@
           <a href="../../view/svn/basicnet/avahi.html">avahi-0.8</a>.</li>
       <li>After release, security vulnerabilities were discovered in Wireshark
           that could cause Wireshark to crash. To fix these, update to
-          Wireshark-3.2.2 or later using the instructions in
-          <a 
href="../../view/svn/basicnet/wireshark.html">Wireshark-3.2.2</a>.</li>
+          Wireshark-3.2.3 or later using the instructions in
+          <a 
href="../../view/svn/basicnet/wireshark.html">Wireshark-3.2.3</a>.</li>
       <li>After release, several security vulnerabilities were discovered in
           PHP. These included access violations, heap buffer overflows, and
           null pointer dereference vulnerabilities. To fix these, update to
@@ -85,10 +91,10 @@
           Firefox. Two of these vulnerabilities are 0days that are being used
           in the wild. Please update immediately using the instructions in 
           <a href="../../view/svn/xsoft/firefox.html">Firefox-68.7.0</a>.</li>
-      <li>After release, several security vulnerabilities were discovered in
-          Thunderbird. To fix these, update to Thunderbird-68.6.0 or later 
using
-          the instructions in
-          <a 
href="../../view/svn/xsoft/thunderbird.html">Thunderbird-68.6.0</a>.</li>
+      <li>After release, several critical security vulnerabilities were 
+          discovered in Thunderbird. To fix these, update to 
Thunderbird-68.7.0 
+          or later using the instructions in
+          <a 
href="../../view/svn/xsoft/thunderbird.html">Thunderbird-68.7.0</a>.</li>
       <li>After release, a privilege escalation vulnerability was discovered in
           Bubblewrap. To fix this vulnerability, update to Bubblewrap-0.4.1 or
           later using the instructions in
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

[website] r1544 - in html/trunk/blfs/errata: 9.1 9.1-systemd

Reply via email to