Sisyphus repository
Last update: 25 november 2015 | SRPMs: 18373 | Visits: 7000545
en ru br
Security fixes

strongswan-5.3.4-alt1   build Michael Shigorin, 2015-11-16

- new version (watch file uupdate)
+ fixes CVE-2015-8023: authentication bypass in eap-mschapv2, see

adobe-flash-player-11-alt56   build Sergey V Turchin, 2015-11-11

- new version
- security fixes:
CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654,
CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658,
CVE-2015-7659, CVE-2015-7660, CVE-2015-7661, CVE-2015-7662,
CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044,

chromium-46.0.2490.86-alt1   build Andrey Cherepanov, 2015-11-11

- New version
- Security fixes:
- High CVE-2015-1302: Information leak in PDF viewer.

libvirt-1.2.20-alt1   build Alexey Shabalin, 2015-10-22

- 1.2.20
- fixed CVE-2015-5247

squid-3.5.10-alt1   build Alexey Shabalin, 2015-10-20

- 3.5.10
- fixed CVE-2015-5400

krb5-1.13.2-alt1   build Alexey Shabalin, 2015-10-20

- 1.13.2
- fixed CVE-2014-5355, CVE-2015-2694
- add patches from fedora

adobe-flash-player-11-alt55   build Sergey V Turchin, 2015-10-19

- new version
- security fixes: CVE-2015-7645, CVE-2015-7647, CVE-2015-7648

adobe-flash-player-11-alt54   build Sergey V Turchin, 2015-10-14

- new version
- security fixes:
CVE-2015-5569, CVE-2015-7625, CVE-2015-7626, CVE-2015-7627,
CVE-2015-7628, CVE-2015-7629, CVE-2015-7630, CVE-2015-7631,
CVE-2015-7632, CVE-2015-7633, CVE-2015-7634, CVE-2015-7643,

chromium-46.0.2490.71-alt1   build Andrey Cherepanov, 2015-10-14

- New version
- Security fixes:
- High CVE-2015-6755: Cross-origin bypass in Blink.
- High CVE-2015-6756: Use-after-free in PDFium.
- High CVE-2015-6757: Use-after-free in ServiceWorker.
- High CVE-2015-6758: Bad-cast in PDFium.
- Medium CVE-2015-6759: Information leakage in LocalStorage.
- Medium CVE-2015-6760: Improper error handling in libANGLE.
- Medium CVE-2015-6761: Memory corruption in FFMpeg.
- Low CVE-2015-6762: CORS bypass via CSS fonts.

python-module-django-1.8.5-alt1   build Alexey Shabalin, 2015-10-13

- 1.8.5
- fixed CVE-2015-5143, CVE-2015-5144, CVE-2015-5145, CVE-2015-5964, CVE-2015-5963

openldap-2.4.42-alt1   build Anton V. Boyarshinov, 2015-09-30

- updated to 2.4.42
- obsolete patches removed
- CVE-2015-6908 fixed

chromium-45.0.2454.101-alt1   build Andrey Cherepanov, 2015-09-28

- New version
- Security fixes:
- High CVE-2015-1303: Cross-origin bypass in DOM.
- High CVE-2015-1304: Cross-origin bypass in V8.

v8-chromium-   build Andrey Cherepanov, 2015-09-28

- New version for chromium-45.0.2454.101
- Security fixes:
- High CVE-2015-1304: Cross-origin bypass in V8.

adobe-flash-player-11-alt53   build Sergey V Turchin, 2015-09-25

- new version
- security fixes:
CVE-2015-5567, CVE-2015-5568, CVE-2015-5570, CVE-2015-5571,
CVE-2015-5572, CVE-2015-5573, CVE-2015-5574, CVE-2015-5575,
CVE-2015-5576, CVE-2015-5577, CVE-2015-5578, CVE-2015-5579,
CVE-2015-5580, CVE-2015-5581, CVE-2015-5582, CVE-2015-5584,
CVE-2015-5587, CVE-2015-5588, CVE-2015-6676, CVE-2015-6677,
CVE-2015-6678, CVE-2015-6679, CVE-2015-6682

libunwind-1.1-alt2   build Gleb F-Malinovskiy, 2015-09-14

- Fixed CVE-2015-3239.
- Added aarch64 architecture support.

screen-4.0.3-alt11   build Gleb F-Malinovskiy, 2015-09-03

- Fixed CVE-2015-6806.

chromium-45.0.2454.85-alt1   build Andrey Cherepanov, 2015-09-02

- New version
- Security fixes:
- High CVE-2015-1291: Cross-origin bypass in DOM.
- High CVE-2015-1292: Cross-origin bypass in ServiceWorker.
- High CVE-2015-1293: Cross-origin bypass in DOM.
- High CVE-2015-1294: Use-after-free in Skia.
- High CVE-2015-1295: Use-after-free in Printing.
- High CVE-2015-1296: Character spoofing in omnibox.
- Medium CVE-2015-1297: Permission scoping error in WebRequest.
- Medium CVE-2015-1298: URL validation error in extensions.
- Medium CVE-2015-1299: Use-after-free in Blink.
- Medium CVE-2015-1300: Information leak in Blink.

libvdpau-1.1.1-alt1   build Sergey V Turchin, 2015-09-01

- new version
- security fixes: CVE-2015-5198, CVE-2015-5199, CVE-2015-5200

adobe-flash-player-11-alt52   build Sergey V Turchin, 2015-08-12

- new version
- security fixes:
CVE-2015-3107, CVE-2015-5124, CVE-2015-5125, CVE-2015-5127,
CVE-2015-5128, CVE-2015-5129, CVE-2015-5130, CVE-2015-5131,
CVE-2015-5132, CVE-2015-5133, CVE-2015-5134, CVE-2015-5539,
CVE-2015-5540, CVE-2015-5541, CVE-2015-5544, CVE-2015-5545,
CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549,
CVE-2015-5550, CVE-2015-5551, CVE-2015-5552, CVE-2015-5553,
CVE-2015-5554, CVE-2015-5555, CVE-2015-5556, CVE-2015-5557,
CVE-2015-5558, CVE-2015-5559, CVE-2015-5560, CVE-2015-5561,
CVE-2015-5562, CVE-2015-5563, CVE-2015-5564

libarchive-3.1.2-alt2   build Sergey V Turchin, 2015-08-05

- merge SuSE and FC patches
- security fixes: CVE-2013-0211

bind-9.9.7-alt1   build Fr. Br. George, 2015-07-28

- Update to
- CVE-2015-5477 fix

adobe-flash-player-11-alt51   build Sergey V Turchin, 2015-07-18

- new version
- security fixes: CVE-2015-5122, CVE-2015-5123

xymon-4.3.21-alt1   build Sergey Y. Afonin, 2015-07-17

- new version (CVE-2015-1430 was fixed in previous 4.3.18)
- moved binaries from /usr/lib to /usr/libexec
(xymonserver.cfg of earlier installed package should be updated manualy)
- removed "Requires: ntp" (but ntpdate and ntpq may be needed
in some installations)

adobe-flash-player-11-alt50   build Sergey V Turchin, 2015-07-14

- fix changelog
- security NOT fixed: CVE-2015-5122, CVE-2015-5123

openssl10-1.0.1k-alt4   build Gleb F-Malinovskiy, 2015-07-09

- Fixed CVE-2015-1793.
design & coding: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
current maintainer: Michael Shigorin