Author: renodr
Date: Thu Jul 30 08:34:54 2020
New Revision: 1600
Log:
Errata: Add errata for Python-3.8.5 vulnerability in LFS
Errata: Add errata for LibRaw
Errata: Add errata for js68
Errata: Update errata for Firefox
Errata: Update errata for NSS
Modified:
html/trunk/blfs/errata/9.1-systemd/index.html
html/trunk/blfs/errata/9.1/index.html
html/trunk/lfs/errata/9.1-systemd/index.html
html/trunk/lfs/errata/9.1/index.html
Modified: html/trunk/blfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1-systemd/index.html Wed Jul 29 08:25:02
2020 (r1599)
+++ html/trunk/blfs/errata/9.1-systemd/index.html Thu Jul 30 08:34:54
2020 (r1600)
@@ -113,7 +113,9 @@
<li>After release, several security vulnerabilities were discovered in
Firefox. Two of these vulnerabilities are 0days that are being used
in the wild. Please update immediately using the instructions in
- <a
href="../../view/systemd/xsoft/firefox.html">Firefox-68.9.0</a>.</li>
+ <a href="../../view/systemd/xsoft/firefox.html">Firefox-78.1.0</a>.
+ If you would prefer to stay with the 68-ESR series, update to
+ Firefox-68.11.0 instead.</li>
<li>After release, several critical security vulnerabilities were
discovered in Thunderbird. To fix these, update to Thunderbird-78.0
or later using the instructions in
@@ -190,8 +192,8 @@
<li>After release, two security vulnerabilities were discovered in
the version of Python-3 shipped with BLFS 9.1. These vulnerabilities
were discovered in the urllib module. To fix these, update to
- Python-3.8.3 using the instructions in
- <a
href="../../view/systemd/general/python3.html">Python-3.8.3</a>.</li>
+ Python-3.8.5 using the instructions in
+ <a
href="../../view/systemd/general/python3.html">Python-3.8.5</a>.</li>
<li>After release, multiple high severity vulnerabilities were disclosed
in the ISC BIND DNS Server. These vulnerabilities were fixed in
BIND-9.16.4. To fix these vulnerabilities, update to BIND-9.16.4
@@ -207,8 +209,8 @@
sed -i 's/BUFSIZ/rw_base_size/' src/unshar.c</li>
<li>After release, two security vulnerabilities were discovered in
Mozilla
Network Security Services (NSS). To fix these vulnerabilities,
update to
- NSS-3.53.1 using the instructions in
- <a href="../../view/systemd/postlfs/nss.html">NSS-3.53.1</a>.</li>
+ NSS-3.55 using the instructions in
+ <a href="../../view/systemd/postlfs/nss.html">NSS-3.55</a>.</li>
<li>After release, several security vulnerabilities were discovered in
the Dovecot IMAP server. Three of these are known to crash the server
if exploited successfully, which results in a DoS attack. To fix
@@ -287,6 +289,14 @@
that happens when communicating over the SMTP protocol. To fix this
vulnerability, update to Sendmail-8.16.1 using the instructions in
<a
href="../../view/systemd/server/sendmail.html">Sendmail-8.16.1</a>.</li>
+ <li>After release, a security vulnerability was identified in LibRaw. The
+ security vulnerability is identified by CVE-2020-15503. To fix this
+ vulnerability, update to LibRaw-0.20.0 using the instructions in
+ <a
href="../../view/systemd/general/libraw.html">LibRaw-0.20.0</a>.</li>
+ <li>After release, a security vulnerability was discovered in the Mozilla
+ JavaScript interpreter when debugging scripts. To fix this issue,
+ update to js68-68.11.0 or higher using the instructions in
+ <a href="../../view/systemd/general/js68.html">js68-68.11.0</a>.</li>
</ul>
Modified: html/trunk/blfs/errata/9.1/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1/index.html Wed Jul 29 08:25:02 2020
(r1599)
+++ html/trunk/blfs/errata/9.1/index.html Thu Jul 30 08:34:54 2020
(r1600)
@@ -111,7 +111,9 @@
<li>After release, several security vulnerabilities were discovered in
Firefox. Two of these vulnerabilities are 0days that are being used
in the wild. Please update immediately using the instructions in
- <a href="../../view/svn/xsoft/firefox.html">Firefox-68.9.0</a>.</li>
+ <a href="../../view/svn/xsoft/firefox.html">Firefox-78.1.0esr</a>.
+ If you would prefer to stay with the 68-ESR series, update to
+ Firefox-68.11.0 instead.</li>
<li>After release, several critical security vulnerabilities were
discovered in Thunderbird. To fix these, update to Thunderbird-78.0
or later using the instructions in
@@ -186,11 +188,11 @@
NVD database. If you wish to fix them, update to MariaDB-10.4.13
or later using the instructions in
<a
href="../../view/svn/server/mariadb.html">MariaDB-10.4.13</a>.</li>
- <li>After release, two security vulnerabilities were discovered in
+ <li>After release, five security vulnerabilities were discovered in
the version of Python-3 shipped with BLFS 9.1. These vulnerabilities
were discovered in the urllib module. To fix these, update to
- Python-3.8.3 using the instructions in
- <a href="../../view/svn/general/python3.html">Python-3.8.3</a>.</li>
+ Python-3.8.5 using the instructions in
+ <a href="../../view/svn/general/python3.html">Python-3.8.5</a>.</li>
<li>After release, multiple high severity vulnerabilities were disclosed
in the ISC BIND DNS Server. These vulnerabilities were fixed in
BIND-9.16.4. To fix these vulnerabilities, update to BIND-9.16.4
@@ -206,8 +208,8 @@
sed -i 's/BUFSIZ/rw_base_size/' src/unshar.c</li>
<li>After release, two security vulnerabilities were discovered in
Mozilla
Network Security Services (NSS). To fix these vulnerabilities,
update to
- NSS-3.53.1 using the instructions in
- <a href="../../view/svn/postlfs/nss.html">NSS-3.53.1</a>.</li>
+ NSS-3.55 using the instructions in
+ <a href="../../view/svn/postlfs/nss.html">NSS-3.55</a>.</li>
<li>After release, several security vulnerabilities were discovered in
the Dovecot IMAP server. Three of these are known to crash the server
if exploited successfully, which results in a DoS attack. To fix
@@ -285,7 +287,15 @@
<li>After release, a security vulnerability was identified in Sendmail
that happens when communicating over the SMTP protocol. To fix this
vulnerability, update to Sendmail-8.16.1 using the instructions in
- <a
href="../../view/systemd/server/sendmail.html">Sendmail-8.16.1</a>.</li>
+ <a
href="../../view/svn/server/sendmail.html">Sendmail-8.16.1</a>.</li>
+ <li>After release, a security vulnerability was identified in LibRaw. The
+ security vulnerability is identified by CVE-2020-15503. To fix this
+ vulnerability, update to LibRaw-0.20.0 using the instructions in
+ <a href="../../view/svn/general/libraw.html">LibRaw-0.20.0</a>.</li>
+ <li>After release, a security vulnerability was discovered in the Mozilla
+ JavaScript interpreter when debugging scripts. To fix this issue,
+ update to js68-68.11.0 or higher using the instructions in
+ <a href="../../view/svn/general/js68.html">js68-68.11.0</a>.</li>
</ul>
<!--#include virtual="/common/footer.html" -->
Modified: html/trunk/lfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/lfs/errata/9.1-systemd/index.html Wed Jul 29 08:25:02
2020 (r1599)
+++ html/trunk/lfs/errata/9.1-systemd/index.html Thu Jul 30 08:34:54
2020 (r1600)
@@ -70,6 +70,12 @@
using the instructions from the 9.1 book with the version of
<a href="../../view/systemd/chapter08/dbus.html">D-Bus</a>
from the development book.</li>
+ <li>CVE-2019-20907: infinite loop when reading TAR files. To patch
+ it, upgrade to Python-3.8.5 or higher using the instructions
from
+ the 9.1 book with the version of
+ <a href="../../view/systemd/chapter08/python.html">Python</a>
+ from the development book.</li>
+
</ul>
<!--
Modified: html/trunk/lfs/errata/9.1/index.html
==============================================================================
--- html/trunk/lfs/errata/9.1/index.html Wed Jul 29 08:25:02 2020
(r1599)
+++ html/trunk/lfs/errata/9.1/index.html Thu Jul 30 08:34:54 2020
(r1600)
@@ -63,6 +63,11 @@
instructions from the 9.1 book with the version of
<a
href="../../view/development/chapter08/perl.html">Perl-5.30</a>
from the development book.</li>
+ <li>CVE-2019-20907: infinite loop when reading TAR files. To patch
+ it, upgrade to Python-3.8.5 or higher using the instructions
from
+ the 9.1 book with the version of
+ <a
href="../../view/development/chapter08/python.html">Python</a>
+ from the development book.</li>
</ul>
<!--
--
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
