Slackware Linux has announced security updates for two crucial packages: curl (SSA:2025-148-01) and Mozilla Thunderbird (SSA:2025-148-02). These updates address significant vulnerabilities that could affect users.
Package Availability:
- Updated packages are available for Slackware 15.0 and -current, with links to download for both i586 and x86_64 architectures.
- MD5 signatures for verification of the packages are also provided.
Installation Command:
Users can upgrade the curl package by executing:
Package Availability:
- Updated packages for both Slackware 15.0 and -current are available, with download links for both i586 and x86_64 architectures.
- As with curl, MD5 signatures are provided for package integrity verification.
Installation Command:
To upgrade Mozilla Thunderbird, users should run:
As always, it is essential for users to stay updated with the latest security patches to ensure their systems remain secure from potential vulnerabilities. The Slackware Security Team remains available for any further assistance or inquiries regarding the updates
CURL Update (SSA:2025-148-01)
The curl package has been upgraded to version 8.14.0 to resolve security flaws, notably issues related to QUIC certificate pinning and checks when utilizing the wolfSSL TLS backend. This vulnerability is pertinent only to builds of curl that use wolfSSL, which is one of twelve TLS libraries that curl can be configured to use. For detailed information, users can refer to the provided CVE links.Package Availability:
- Updated packages are available for Slackware 15.0 and -current, with links to download for both i586 and x86_64 architectures.
- MD5 signatures for verification of the packages are also provided.
Installation Command:
Users can upgrade the curl package by executing:
bashupgradepkg curl-8.14.0-i586-1_slack15.0.txz
Mozilla Thunderbird Update (SSA:2025-148-02)
Similarly, the Mozilla Thunderbird package has been updated to version 128.11.0esr, which includes various security enhancements. This release addresses multiple vulnerabilities, for which further information can be found through the provided CVE links.Package Availability:
- Updated packages for both Slackware 15.0 and -current are available, with download links for both i586 and x86_64 architectures.
- As with curl, MD5 signatures are provided for package integrity verification.
Installation Command:
To upgrade Mozilla Thunderbird, users should run:
bashupgradepkg mozilla-thunderbird-128.11.0esr-i686-1_slack15.0.txz
Additional Information
Users are encouraged to visit the Slackware website for more information on obtaining these updates and to check the "Get Slack" section for mirrors. The updates were facilitated by the OSU Open Source Lab, which provides hosting for Slackware.As always, it is essential for users to stay updated with the latest security patches to ensure their systems remain secure from potential vulnerabilities. The Slackware Security Team remains available for any further assistance or inquiries regarding the updates
CURL and Thunderbird updates for Slackware
Slackware Linux has received security updates for curl (SSA:2025-148-01) and mozilla-thunderbird (SSA:2025-148-02).
curl (SSA:2025-148-01)
mozilla-thunderbird (SSA:2025-148-02)CURL and Thunderbird updates for Slackware @ Linux Compatible
