Sisyphus repositório
Última atualização: 23 abril 2014 | SRPMs: 15069 | Visitas: 5393834
en ru br
As correcções de segurança

kernel-image-ovz-el-2.6.32-alt116   build Led, 2014-03-22


- netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (CVE-2014-2523)

nginx-1.4.7-alt1   build Denis Smirnov, 2014-03-19


- 1.4.7
- CVE-2014-0133

v8-3.24-3.23.17.22-alt1   build Andrey Cherepanov, 2014-03-13


- new version
- security fixes:
+ CVE-2014-1704: Multiple vulnerabilities in V8

v8-3.24-3.22.24.18-alt1   build Dmitriy Kulik, 2014-01-28


- new version (Closes: #29762)
+ High CVE-2013-6650: Memory corruption in V8.

kernel-image-ovz-el-2.6.32-alt109   build Led, 2014-01-08


- Update to 042stab084.14
- CVE-2013-2141
- CVE-2013-4470

v8-3.24-3.22.24.8-alt1   build Dmitriy Kulik, 2013-12-01


- new version (Closes: #29628)
+ Medium CVE-2013-6638: Buffer overflow in v8.
+ High CVE-2013-6639: Out of bounds write in v8.
+ Medium CVE-2013-6640: Out of bounds read in v8.

nginx-1.4.4-alt1   build Denis Smirnov, 2013-11-22


- 1.4.4 (ALT #29604)
- CVE-2013-4547

openssh-5.9p1-alt7   build Dmitry V. Levin, 2013-11-08


- sshd: applied upstream initialization fix (CVE-2013-4548).

qemu-1.6.1-alt1   build Alexey Shabalin, 2013-10-11


- 1.6.1 (fixed CVE-2013-4344)
- drop qemu-kvm service

libvirt-1.1.1-alt1   build Alexey Shabalin, 2013-08-08


- 1.1.1
- fixed CVE-2013-2230, CVE-2013-4153, CVE-2013-4154

samba-4.0.8-alt1   build Alexey Shabalin, 2013-08-07


- 4.0.8
- fixed CVE-2013-4124

strongswan-5.1.0-alt1   build Michael Shigorin, 2013-08-07


- 5.1.0: CVE-2013-5018 fix (charon DoS, see also
http://www.strongswan.org/blog/2013/08/01/)

chromium-28.0.1500.95-alt1.r213514   build Andrey Cherepanov, 2013-07-31


- New version 28.0.1500.95
- Security fixes:
- Medium CVE-2013-2881: Origin bypass in frame handling.
- High CVE-2013-2883: Use-after-free in MutationObserver.
- High CVE-2013-2884: Use-after-free in DOM.
- High CVE-2013-2885: Use-after-free in input handling.

qemu-1.5.2-alt1   build Alexey Shabalin, 2013-07-29


- 1.5.2
- fixed CVE-2013-2231

chromium-28.0.1500.71-alt1.r209842   build Andrey Cherepanov, 2013-07-24


- New version 28.0.1500.71
- Security fixes:
- High CVE-2013-2879: Confusion setting up sign-in and sync.
- Medium CVE-2013-2868: Incorrect sync of NPAPI extension component.
- Medium CVE-2013-2869: Out-of-bounds read in JPEG2000 handling.
- Critical CVE-2013-2870: Use-after-free with network sockets.
- Medium CVE-2013-2853: Man-in-the-middle attack against HTTP in SSL.
- High CVE-2013-2871: Use-after-free in input handling.
- High CVE-2013-2873: Use-after-free in resource loading.
- Medium CVE-2013-2875: Out-of-bounds-read in SVG.
- Medium CVE-2013-2876: Extensions permissions confusion with interstitials.
- Low CVE-2013-2877: Out-of-bounds read in XML parsing.
- None: Remove the "viewsource" attribute on iframes.
- Medium CVE-2013-2878: Out-of-bounds read in text handling.
- High CVE-2013-2880: Various fixes from internal audits, fuzzing and other initiatives

glpi-0.83.9.1-alt1   build Pavel Zilke, 2013-07-21


- Security fixes:
+ CVE-2013-2225 + CVE-2013-2227 : Security fix ( serialize + filter classname for autoload) (ALT #29189)

kernel-image-el-def-2.6.32-alt9   build Led, 2013-07-17


- 2.6.32-358.14.1.el6:
+ CVE-2012-6548
+ CVE-2013-0914
+ CVE-2013-1848
+ CVE-2013-2128
+ CVE-2013-2634
+ CVE-2013-2635
+ CVE-2013-2852
+ CVE-2013-3222
+ CVE-2013-3224
+ CVE-2013-3225
+ CVE-2013-3301
- added radeo firmwares

adobe-flash-player-11-alt20   build Sergey V Turchin, 2013-07-16


- 11.2.202.297 (x86,x86-64)
- security fixes: CVE-2013-3344, CVE-2013-3345, CVE-2013-3347

kernel-image-el-def-2.6.32-alt8   build Led, 2013-07-02


- fixed freeing RCU-protected IP-options (CVE-2013-2224)

kernel-image-ovz-el-2.6.32-alt97   build Led, 2013-07-02


- fixed freeing RCU-protected IP-options (CVE-2013-2224)
- enabled OCFS2_FS

evince-3.8.2-alt2   build Yuri N. Sedunov, 2013-07-01


- updated to 3059e01 (in particular fixed CVE-2013-3718)
- added gnome-icon-theme-symbolic, dconf to rqs

adobe-flash-player-11-alt19   build Sergey V Turchin, 2013-06-17


- 11.2.202.291 (x86,x86-64)
- security fixes: CVE-2013-3343

kernel-image-el-def-2.6.32-alt7   build Led, 2013-06-13


- 2.6.32-358.11.1.el6:
+ CVE-2013-1935
+ CVE-2013-1943
+ CVE-2013-2017

chromium-27.0.1453.110-alt1.r202711   build Andrey Cherepanov, 2013-06-05


- New version 27.0.1453.110
- Security fixes:
- Critical CVE-2013-2863: Memory corruption in SSL socket handling.
- High CVE-2013-2856: Use-after-free in input handling.
- High CVE-2013-2857: Use-after-free in image handling.
- High CVE-2013-2858: Use-after-free in HTML5 Audio.
- High CVE-2013-2859: Cross-origin namespace pollution.
- High CVE-2013-2860: Use-after-free with workers accessing database APIs.
- High CVE-2013-2861: Use-after-free with SVG.
- High CVE-2013-2862: Memory corruption in Skia GPU handling.
- High CVE-2013-2864: Bad free in PDF viewer.
- High CVE-2013-2865: Various fixes from internal audits, fuzzing and other initiatives.
- Medium CVE-2013-2855: Memory corruption in dev tools API.

kernel-image-std-def-3.9.4-alt2   build Anton V. Boyarshinov, 2013-06-04


- CVE-2013-2850 fixed
 
projeto & código: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
mantenedor atual: Michael Shigorin
mantenedor da tradução: Fernando Martini aka fmartini © 2009