Security fixes
firefox-111.0-alt1
build Alexey Gladkov,
2023-03-14
- New release (111.0).
- Exclude arch i586.
- Security fixes:
+ CVE-2023-28159: Fullscreen Notification could have been hidden by download popups on Android
+ CVE-2023-25748: Fullscreen Notification could have been hidden by window prompts on Android
+ CVE-2023-25749: Firefox for Android may have opened third-party apps without a prompt
+ CVE-2023-25750: Potential ServiceWorker cache leak during private browsing mode
+ CVE-2023-25751: Incorrect code generation during JIT compilation
+ CVE-2023-28160: Redirect to Web Extension files may have leaked local path
+ CVE-2023-28164: URL being dragged from a removed cross-origin iframe into the same tab triggered navigation
+ CVE-2023-28161: One-time permissions granted to a local file were extended to other local files loaded in the same tab
+ CVE-2023-28162: Invalid downcast in Worklets
+ CVE-2023-25752: Potential out-of-bounds when accessing throttled streams
+ CVE-2023-28163: Windows Save As dialog resolved environment variables
+ CVE-2023-28176: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9
+ CVE-2023-28177: Memory safety bugs fixed in Firefox 111
shim-15.7-alt3 build Egor Ignatov, 2023-03-14
- grub 2.06-alt9 is missing fix for CVE-2022-28733, block SBAT grub.altlinux < 2
+ add shim-15.7-alt-Add-grub.altlinux-2-to-SBAT-revocations patch
grub-2.06-alt10 build Egor Ignatov, 2023-03-14
- grub2-sysconfig: change default option to GRUB_VMLINUZ_SYMLINKS=yes (closes: #44406)
- add upstream-0061-net-ip-Do-IP-fragment-maths-safely patch (fixes: CVE-2022-28733)
- bump grub.altlinux SBAT level to 2 after closing CVE missed in the previous release
dotnet-aspnetcore-3.1-3.1.32-alt1 build Vitaly Lipatov, 2023-03-13
- ASP.NET Core 3.1.32
- CVE-2022-38013: .NET Denial of Service Vulnerability
dotnet-runtime-5.0-5.0.17-alt1 build Vitaly Lipatov, 2023-03-13
- new version (5.0.17) with rpmgs script
- CVE-2022-29117: .NET Denial of Service Vulnerability
- CVE-2022-29145: .NET Denial of Service Vulnerability
- CVE-2022-23267: .NET Denial of Service Vulnerability
node-16.19.1-alt1 build Vitaly Lipatov, 2023-03-13
- new version 16.19.1 (with rpmrb script)
- CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High)
- CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library (Medium)
- CVE-2023-23920: Node.js insecure loading of ICU data through ICU\_DATA environment variable (Low)
- CVE-2023-23936: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium)
- CVE-2023-24807: Regular Expression Denial of Service in Headers in Node.js fetch API (Low)
- set openssl >= 1.1.1s
- set npm >= 8.19.3
dotnet-bootstrap-6.0-6.0.14-alt1 build Vitaly Lipatov, 2023-03-13
- The .NET 6.0.14 and .NET SDK 6.0.114 releases
- CVE-2023-21808: .NET Remote Code Execution Vulnerability
- CVE-2023-21538: .NET Denial of Service Vulnerability
dotnet-bootstrap-7.0-7.0.3-alt1 build Vitaly Lipatov, 2023-03-13
- The .NET 7.0.3 and .NET SDK 7.0.103 releases
- CVE-2023-21808: .NET Remote Code Execution Vulnerability
dotnet-runtime-6.0-6.0.14-alt1 build Vitaly Lipatov, 2023-03-13
- .NET 6.0.14
- CVE-2023-21808: .NET Remote Code Execution Vulnerability
- CVE-2023-21538: .NET Denial of Service Vulnerability
dotnet-runtime-7.0-7.0.3-alt1 build Vitaly Lipatov, 2023-03-13
- .NET 7.0.1
- CVE-2023-21808: .NET Remote Code Execution Vulnerability
- restore build and pack singlefilehost
liferea-1.14.1-alt1 build Yuri N. Sedunov, 2023-03-13
- 1.14.1 (fixed CVE-2023-1350)
dotnet-bootstrap-5.0-5.0.17-alt1 build Vitaly Lipatov, 2023-03-12
- new version (5.0.17) with rpmgs script
- CVE-2022-29117: .NET Denial of Service Vulnerability
- CVE-2022-29145: .NET Denial of Service Vulnerability
- CVE-2022-23267: .NET Denial of Service Vulnerability
dotnet-bootstrap-3.1-3.1.32-alt1 build Vitaly Lipatov, 2023-03-12
- .NET Core 3.1.32 and .NET Core SDK 3.1.426 releases
- CVE-2022-41089: .NET Remote Code Execution Vulnerability
- CVE-2022-41032: .NET Elevation of Privilege Vulnerability
- CVE-2022-38013: .NET Denial of Service Vulnerability
- CVE-2022-34716: .NET Information Disclosure Vulnerability
dotnet-coreclr-3.1-3.1.32-alt1 build Vitaly Lipatov, 2023-03-12
- .NET Core 3.1.32
- CVE-2022-41089: .NET Remote Code Execution Vulnerability
- CVE-2022-41032: .NET Elevation of Privilege Vulnerability
- CVE-2022-34716: .NET Information Disclosure Vulnerability
kernel-image-centos-5.14.0.286-alt1.el9 build Alexey Gladkov, 2023-03-11
- Updated to kernel-5.14.0-286.el9 (fixes: CVE-2022-4379):
+ clocksource: hyper-v: Updates for RHEL9.3
+ Draft: Merge tag 'kernel-5.14.0-284.1.1.el9_2' from 9.2
+ kernel.spec: make rhel depend on systemd-boot-unsigned
+ l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()
+ Merge documentation commit '7e13f7dd9689f6fa503c23e515edaa46e7d38ce5' into c9s
+ Merge tag 'kernel-5.14.0-284.1.1.el9_2' from 9.2
+ NFSD: fix use-after-free in __nfs42_ssc_open()
+ NFS fixes rollup through kernel v6.2
+ Pull OCP patches forward from 8.6
+ redhat: Bump RHEL_MINOR for 9.3
+ redhat: change default dist suffix for RHEL 9.2
+ redhat: enable zstream release numbering for rhel 9.2
+ [RHEL 9.3] Merge PREEMPT_RT and build kernel-rt as sub-package
+ [s390]: RHEL9.0 - diag288_wdt: do not use stack buffers for hardware data
+ x86/cpu: Add CPU model numbers for Meteor Lake
+ Various changes and improvements that are poorly described in merge.
palemoon-32.0.1-alt1 build Hihin Ruslan, 2023-03-11
- Version 32.0.1 (CVE-2023-25733, CVE-2023-25739, CVE-2023-0767)
clamav-0.103.8-alt1 build Sergey Y. Afonin, 2023-03-09
- 0.103.8 (CVE-2023-20032, CVE-2023-20052)
apache2-2.4.56-alt1 build Anton Farygin, 2023-03-09
- 2.4.56 (Fixes: CVE-2023-25690, CVE-2023-27522)
golang-1.19.7-alt1 build Alexey Shabalin, 2023-03-07
- New version (1.19.7) (Fixes: CVE-2023-24532).
firefox-esr-102.8.0-alt1 build Pavel Vasenkov, 2023-03-03
- New ESR version.
- Security fixes
+ CVE-2023-25728 Content security policy leak in violation reports using iframes
+ CVE-2023-25730 Screen hijack via browser fullscreen mode
+ CVE-2023-0767 Arbitrary memory write via PKCS 12 in NSS
+ CVE-2023-25735 Potential use-after-free from compartment mismatch in SpiderMonkey
+ CVE-2023-25737 Invalid downcast in SVGUtils::SetupStrokeGeometry
+ CVE-2023-25738 Printing on Windows could potentially crash Firefox with some device drivers
+ CVE-2023-25739 Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext
+ CVE-2023-25729 Extensions could have opened external schemes without user knowledge
+ CVE-2023-25732 Out of bounds memory write from EncodeInputStream
+ CVE-2023-25734 Opening local .url files could cause unexpected network loads
+ CVE-2023-25742 Web Crypto ImportKey crashes tab
+ CVE-2023-25744 Memory safety bugs fixed in Firefox 110 and Firefox ESR 102.8
+ CVE-2023-25746 Memory safety bugs fixed in Firefox ESR 102.8
thunderbird-102.8.0-alt1 build Pavel Vasenkov, 2023-02-28
- New version.
- Security fixes:
+ CVE-2023-0616 User Interface lockup with messages combining S/MIME and OpenPGP
+ CVE-2023-25728 Content security policy leak in violation reports using iframes
+ CVE-2023-25730 Screen hijack via browser fullscreen mode
+ CVE-2023-0767 Arbitrary memory write via PKCS 12 in NSS
+ CVE-2023-25735 Potential use-after-free from compartment mismatch in SpiderMonkey
+ CVE-2023-25737 Invalid downcast in SVGUtils::SetupStrokeGeometry
+ CVE-2023-25738 Printing on Windows could potentially crash Thunderbird with some device drivers
+ CVE-2023-25739 Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext
+ CVE-2023-25729 Extensions could have opened external schemes without user knowledge
+ CVE-2023-25732 Out of bounds memory write from EncodeInputStream
+ CVE-2023-25734 Opening local .url files could cause unexpected network loads
+ CVE-2023-25742 Web Crypto ImportKey crashes tab
+ CVE-2023-25746 Memory safety bugs fixed in Thunderbird 102.8
podman-4.4.2-alt1 build Alexey Shabalin, 2023-02-27
- new version 4.4.2 (Fixes: CVE-2023-0778)
kernel-image-centos-5.14.0.283-alt1.el9 build Alexey Gladkov, 2023-02-24
- Updated to kernel-5.14.0-283.el9 (fixes: CVE-2022-33743, CVE-2022-3564, CVE-2022-43750, CVE-2022-4378, CVE-2023-0179, CVE-2023-0590):
+ [9.2] DRM backport part 3: stable backport
+ Add Important AMD BZs to RHEL9.2
+ Add taint flag for partner supported GPL modules
+ [ADL-S] Enable Real-time TSN support on ADL-S platform
+ ALSA: AMD - adjust the gain for PDM microphones
+ arm64-64k: Increase max NR_IRQS from 64+8192 to 2^^19
+ arm64: tegra: Add PWM fan for Jetson AGX Orin
+ arm-smmu-qcom: update to 6.2-rc5
+ atlantic: fix hibernation issues
+ Attend warnings with gcc 11&12 when building kernel and modules
+ Backport i2c-qcom-geni to 6.2
+ backport QDrive3 device tree and drivers/phy/qualcomm (6.2-rc2)
+ Backport QDrive 3 subsystem into CS9: pcie (6.2-rc2)
+ Backport QDrive 3 subsystem into CS9: pinctrl (6.2-rc5)
+ Backport QDrive 3 subsystem into CS9: serial
+ be2net: Fix buffer overflow in be_get_module_eeprom
+ blk-cgroup: don't update io stat for root cgroup
+ Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu
+ cifs: backport directory caching from upstream
+ cifs: fix potential double free during failed mount
+ cifs: serialize all mount attempts
+ cpufreq: Enable CPUFREQ thermal cooling for NVIDIA Orin
+ cpufreq: intel_pstate: Add Sapphire Rapids support in no-HWP mode
+ crypto: jitter - consider 32 LSB for APT
+ CVE-2022-43750 kernel: memory corruption in usbmon driver
+ Disable CPPC+FIE on ARM64 machines with PCC trapping
+ docs: networking: Fix bridge documentation URL
+ drm/ast: Fix start address computation
+ dt-bindings: arm: qcom: 6.1 updates for QDrive3
+ EDAC/amd64: Handle three rank interleaving mode
+ Enable kAFS and it's dependancies in RHEL
+ etherdevice: Adjust ether_addr* prototypes to silence -Wstringop-overead
+ Fix stack overflow in do_proc_dointvec and proc_skip_spaces
+ futex: Resend potentially swallowed owner death notification
+ iavf: Fix long delays when creating multiple VFs
+ ice: fix handling of burst Tx timestamps
+ icmp: Add counters for rate limits
+ [Intel 9.2 FEAT] igb: Driver Update
+ ipv6: remove max_size check inline with ipv4
+ IPv6: RHEL9.2 P2 backports from upstream
+ kernel.spec: allow to package some binaries as unstripped
+ kernfs: fix use-after-free in __kernfs_remove
+ Kself: RHEL9.2 P2 backports from upstream
+ KVM: arm64: GICv4.1: Fix race with doorbell on VPE activation/deactivation
+ KVM: x86: Backport SMM related fixes
+ Merge remote-tracking branch 'centos-stream-9/merge-requests/1484' into orin/pwm-fan-v0
+ missing tee/optee and lib/test_scanf commits for CS9
+ MLX4 driver upgrade - kernel 6.0
+ [mlx5] add support for offloading check_pkt_len
+ mlx5 v6.2 fixes
+ mmc: patches to support NVIDIA Orin
+ mm/kmemleak: Fix a UAF problem in kmemleak
+ netfilter: backports for 9.2 phase 2
+ netfilter: conntrack: handle tcp challenge acks during connection reuse
+ netfilter: flowtable_offload: fix using __this_cpu_add in preemptible
+ netfilter: nf_tables: honor set timeout and garbage collection updates
+ netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
+ net: gso: fix panic on frag_list with mixed head alloc types
+ net: mana: Fix accessing freed irq affinity_hint
+ net: sched: fix race condition in qdisc_graft()
+ net-sysfs: add check for netdevice being present to speed_show
+ nfsd: don't destroy global nfs4_file table in per-net shutdown
+ octeontx2: add Admin/Physical/Virtual Function drivers
+ pci: tegra: add fixes to sound/pci for NVIDIA Orin Support
+ perf: arm_cspmu: Add support for ARM CoreSight PMU driver
+ perf vendor events power10: Fix hv-24x7 metric events
+ Provide support for SPI on Arm SystemReady IR devices (imx8 and nvidia orin)
+ r8169: update the driver
+ RDMA/irdma: Cap MSIX used to online CPUs + 1
+ redhat: Add sub-RPM with a EFI unified kernel image for virtual machines
+ redhat: add support for Jira issues in changelog
+ redhat: fix duplicate jira issues in the resolves line
+ redhat: Include Azure CVM specific udev rules into UKI's initramfs
+ redhat/kernel.spec.template: Parallelize compression
+ remoteproc: qcom: pas: bring 6.0 hw support and fixes
+ Revert "block: freeze the queue earlier in del_gendisk"
+ Revert "ethernet: Remove vf rate limit check for drivers"
+ Revert "vdpa/mlx5: Add RX MAC VLAN filter support"
+ [RHEL for Edge] add changes to enable USB support on NVIDIA Orin
+ [RHEL for Edge] Add devicetree bindings for drivers/dma on NVIDIA Orin
+ [RHEL for Edge] add fixes to drivers/tty/serial to support NVIDIA Orin
+ rtc: efi: Enable SET/GET WAKEUP services as optional
+ rtmutex: Add acquire semantics for rtmutex lock acquisition slow path
+ sctp: backports from upstream, 2nd phase
+ sctp: do not check hb_timer.expires when resetting hb_timer
+ selftests/net: give more time to udpgro bg processes to complete startup
+ selftests: net: update udpgso_bench test
+ soc: qcom: bring up to 6.2rc1
+ [SPR] perf: Workaround the UPI intel_uncore_has_discovery_tables issue on SPR MCC and LCC
+ tegra: Upstream DLA commits to support NVIDIA Orin
+ The Neoverse N2/A710 self hosted trace errata, and updated coresight and spe subsystem
+ thunderbolt: Fix DP tunneling out of resource
+ Update cpufreq/cpufreq-dt-platdev to 6.1
+ update drivers/clk/qcom to 6.2-rc2
+ Update drivers/power in order to support Arm SystemReady IR platforms
+ update drivers/regulator/qcom to 6.2-rc2
+ userfaultfd: add /dev/userfaultfd for fine grained access control
+ vfio migration support
+ virtio_console: break out of buf poll on remove
+ virtio_net: notify MAC address change on device initialization
+ x86/hyperv: Remove unregister syscore call from Hyper-V cleanup
+ x86/module: Fix the paravirt vs alternative order
+ xen-netfront: restore __skb_queue_tail() positioning in xennet_get_responses()
+ xfs: estimate post-merge refcounts correctly
+ xfs, iomap: fix data corrupton due to stale cached iomap
chromium-gost-110.0.5481.177-alt1 build Alexey Gladkov, 2023-02-23
- New version (110.0.5481.177).
- Fix crach in autofill (ALT#45269).
- Security fixes:
- CVE-2023-0927: Use after free in Web Payments API.
- CVE-2023-0928: Use after free in SwiftShader.
- CVE-2023-0929: Use after free in Vulkan.
- CVE-2023-0930: Heap buffer overflow in Video.
- CVE-2023-0931: Use after free in Video.
- CVE-2023-0932: Use after free in WebRTC.
- CVE-2023-0933: Integer overflow in PDF.
- CVE-2023-0941: Use after free in Prompts.
chromium-110.0.5481.177-alt1 build Alexey Gladkov, 2023-02-23
- New version (110.0.5481.177).
- Fix crach in autofill (ALT#45269).
- Security fixes:
- CVE-2023-0927: Use after free in Web Payments API.
- CVE-2023-0928: Use after free in SwiftShader.
- CVE-2023-0929: Use after free in Vulkan.
- CVE-2023-0930: Heap buffer overflow in Video.
- CVE-2023-0931: Use after free in Video.
- CVE-2023-0932: Use after free in WebRTC.
- CVE-2023-0933: Integer overflow in PDF.
- CVE-2023-0941: Use after free in Prompts.
design & coding: Vladimir Lettiev aka crux © 2004-2005,
Andrew Avramenko aka liks © 2007-2008
current maintainer: Michael Shigorin
current maintainer: Michael Shigorin