Репозиторий Sisyphus
Последнее обновление: 16 августа 2019 | Пакетов: 17338 | Посещений: 14647876
en ru br
Исправления уязвимостей

firefox-esr-68.0.2-alt1   сборка Andrey Cherepanov, 2019-08-15


- New ESR version (68.0.2).
- Fixed:
+ CVE-2019-11733 Stored passwords in 'Saved Logins' can be copied without master password entry

cyrus-imapd-3.0.11-alt1   сборка Sergey Y. Afonin, 2019-08-13


- 3.0.11 (CVE-2019-11356 fixed in 3.0.10)
- updated README.ALT.rus

mariadb-10.4.7-alt1   сборка Alexey Shabalin, 2019-08-09


- 10.4.7
- Fixes for the following security vulnerabilities:
+ CVE-2019-2805
+ CVE-2019-2740
+ CVE-2019-2739
+ CVE-2019-2737
+ CVE-2019-2758

haproxy-2.0.4-alt1   сборка Alexey Shabalin, 2019-08-09


- 2.0.4 (Fixes: CVE-2019-14241)

lua5.3-5.3.5-alt1   сборка Vladimir D. Seleznev, 2019-08-08


- 5.3.5.
- Applied CVE-2019-6706-use-after-free-lua_upvaluejoin.patch.
- Added conflict with lua5 <= 5.1.5-alt2.

kde4libs-4.14.38-alt5   сборка Sergey V Turchin, 2019-08-08


- security fixes: CVE-2019-14744

postgresql10-10.10-alt1   сборка Alexei Takaseev, 2019-08-07


- 10.10 (Fixes CVE-2019-10208)

postgresql9.4-9.4.24-alt1   сборка Alexei Takaseev, 2019-08-07


- 9.4.24 (Fixes CVE-2019-10208)

postgresql11-11.5-alt1   сборка Alexei Takaseev, 2019-08-07


- 11.5 (Fixes CVE-2019-10208, CVE-2019-10209)

postgresql9.6-9.6.15-alt1   сборка Alexei Takaseev, 2019-08-07


- 9.6.15 (Fixes CVE-2019-10208)

postgresql9.5-9.5.19-alt1   сборка Alexei Takaseev, 2019-08-07


- 9.5.19 (Fixes CVE-2019-10208)

docker-ce-19.03.1-alt1   сборка Vladimir Didenko, 2019-08-07


- 19.03.1 (fixes CVE-2019-14271)

postgresql10-1C-10.10-alt1   сборка Alexei Takaseev, 2019-08-07


- 10.10 (Fixes CVE-2019-10208)

kernel-image-un-def-5.1.21-alt1   сборка Kernel Bot, 2019-08-06


- v5.1.21 (Fixes: CVE-2019-11478)

python-module-django-1.11.23-alt1   сборка Alexey Shabalin, 2019-08-05


- 1.11.23
- Fixes for the following security vulnerabilities:
+ CVE-2019-14232 Adjusted regex to avoid backtracking issues when truncating HTML
+ CVE-2019-14233 Prevented excessive HTMLParser recursion in strip_tags() when handling incomplete HTML entities
+ CVE-2019-14234 Protected JSONField/HStoreField key and index lookups against SQL injection
+ CVE-2019-14235 Fixed potential memory exhaustion in django.utils.encoding.uri_to_iri()

kernel-image-std-pae-4.19.64-alt1   сборка Kernel Bot, 2019-08-05


- v4.19.64 (Fixes: CVE-2019-10207, CVE-2019-11478, CVE-2019-13648, CVE-2019-3900)

kernel-image-std-def-4.19.64-alt1   сборка Kernel Bot, 2019-08-05


- v4.19.64 (Fixes: CVE-2019-10207, CVE-2019-11478, CVE-2019-13648, CVE-2019-3900)

python3-module-django2.2-2.2.4-alt1   сборка Alexey Shabalin, 2019-08-05


- 2.2.4
- Fixes for the following security vulnerabilities:
+ CVE-2019-14232 Adjusted regex to avoid backtracking issues when truncating HTML
+ CVE-2019-14233 Prevented excessive HTMLParser recursion in strip_tags() when handling incomplete HTML entities
+ CVE-2019-14234 Protected JSONField/HStoreField key and index lookups against SQL injection
+ CVE-2019-14235 Fixed potential memory exhaustion in django.utils.encoding.uri_to_iri()

kernel-image-un-def-5.2.6-alt1   сборка Kernel Bot, 2019-08-05


- v5.2.6 (Fixes: CVE-2019-10207, CVE-2019-11478, CVE-2019-13648)

gvfs-1.40.2-alt1   сборка Yuri N. Sedunov, 2019-08-04


- updated to 1.40.2-2-g4fd68eb2 (fixed CVE-2019-12447,
CVE-2019-12448, CVE-2019-12449, CVE-2019-12795)

chromium-76.0.3809.87-alt1   сборка Alexey Gladkov, 2019-08-02


- New version (76.0.3809.87).
- Security fixes:
- CVE-2019-5850: Use-after-free in offline page fetcher.
- CVE-2019-5851: Use-after-poison in offline audio context.
- CVE-2019-5852: Object leak of utility functions.
- CVE-2019-5853: Memory corruption in regexp length check.
- CVE-2019-5854: Integer overflow in PDFium text rendering.
- CVE-2019-5855: Integer overflow in PDFium.
- CVE-2019-5856: Insufficient checks on filesystem: URI permissions.
- CVE-2019-5857: Comparison of -0 and null yields crash.
- CVE-2019-5858: Insufficient filtering of Open URL service parameters.
- CVE-2019-5859: res: URIs can load alternative browsers.
- CVE-2019-5860: Use-after-free in PDFium.
- CVE-2019-5861: Click location incorrectly checked.
- CVE-2019-5862: AppCache not robust to compromised renderers.
- CVE-2019-5863: Use-after-free in WebUSB on Windows.
- CVE-2019-5864: Insufficient port filtering in CORS for extensions.
- CVE-2019-5865: Site isolation bypass from compromised renderer.

samba-4.10.5-alt1   сборка Evgeny Sinelikov, 2019-07-31


- Update to latest security release
- Security fixes:
+ CVE-2019-12435 Samba AD DC Denial of Service in DNS management server (dnsserver)
+ CVE-2019-12436 Samba AD DC LDAP server crash (paged searches)

proftpd-1.3.6-alt0.1.ga73dbfe3b   сборка L.A. Kostis, 2019-07-23


- Updated to 1.3.6-ga73dbfe3b.
- Fix mod_copy bug #4372 (Ensure that mod_copy checks for <Limits> for its SITE
CPFR) (CVE-2019-12815) (closes #37056).
- Updated mod_sql_postgres patch.
- Updated -pcre patch.

ffmpeg-4.1.4-alt1   сборка Anton Farygin, 2019-07-23


- 4.1.4 (fixes: CVE-2019-12730)

wireshark-3.0.3-alt1   сборка Anton Farygin, 2019-07-22


- 3.0.3
- fixes:
* ASN.1 BER and related dissectors crash. CVE-2019-13619
 
дизайн и разработка: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
текущий майнтейнер: Michael Shigorin