Репозиторий Sisyphus
Последнее обновление: 18 января 2018 | Пакетов: 18252 | Посещений: 10794532
en ru br
Исправления уязвимостей

kernel-image-un-def-4.14.14-alt1   сборка Kernel Bot, 2018-01-17


- v4.14.14 (Fixes: CVE-2017-1000410, CVE-2017-17741, CVE-2017-5753)

kernel-image-std-pae-4.4.112-alt1   сборка Kernel Bot, 2018-01-17


- v4.4.112 (Fixes: CVE-2017-1000410, CVE-2017-17741, CVE-2017-5753)

wireshark-2.4.4-alt1.S1   сборка Anton Farygin, 2018-01-17


- 2.4.4
- fixes:
* wnpa-sec-2018-01 Multiple dissectors could crash. CVE-2018-5336
* wnpa-sec-2018-03 The IxVeriWave file parser could crash. CVE-2018-5334
* wnpa-sec-2018-04 The WCP dissector could crash. CVE-2018-5335

bind-9.11.2.P1-alt1   сборка Stanislav Levin, 2018-01-17


- 9.11.2 -> 9.11.2-P1 (fixes: CVE-2017-3145).

kernel-image-std-def-4.9.77-alt1   сборка Kernel Bot, 2018-01-17


- v4.9.77 (Fixes: CVE-2017-1000410, CVE-2017-17741, CVE-2017-5753)

glibc-2.26.0.131.fabef2e-alt1   сборка Dmitry V. Levin, 2018-01-12


- Updated to glibc-2.26-131-gfabef2e from 2.26 branch
with assorted backports from master (fixes CVE-2018-1000001).

firmware-intel-ucode-3.20180108-alt1   сборка Vladimir D. Seleznev, 2018-01-10


- Update to 20180108 (adapted debian changelog is below):
* New upstream microcode data file 20180108
+ Updated Microcodes:
sig 0x000306c3, pf_mask 0x32, 2017-11-20, rev 0x0023, size 23552
sig 0x000306d4, pf_mask 0xc0, 2017-11-17, rev 0x0028, size 18432
sig 0x000306e4, pf_mask 0xed, 2017-12-01, rev 0x042a, size 15360
sig 0x000306f2, pf_mask 0x6f, 2017-11-17, rev 0x003b, size 33792
sig 0x000306f4, pf_mask 0x80, 2017-11-17, rev 0x0010, size 17408
sig 0x00040651, pf_mask 0x72, 2017-11-20, rev 0x0021, size 22528
sig 0x00040661, pf_mask 0x32, 2017-11-20, rev 0x0018, size 25600
sig 0x00040671, pf_mask 0x22, 2017-11-17, rev 0x001b, size 13312
sig 0x000406e3, pf_mask 0xc0, 2017-11-16, rev 0x00c2, size 99328
sig 0x00050654, pf_mask 0xb7, 2017-12-08, rev 0x200003c, size 27648
sig 0x00050662, pf_mask 0x10, 2017-12-16, rev 0x0014, size 31744
sig 0x00050663, pf_mask 0x10, 2017-12-16, rev 0x7000011, size 22528
sig 0x000506e3, pf_mask 0x36, 2017-11-16, rev 0x00c2, size 99328
sig 0x000706a1, pf_mask 0x01, 2017-12-26, rev 0x0022, size 73728
sig 0x000806e9, pf_mask 0xc0, 2018-01-04, rev 0x0080, size 98304
sig 0x000806ea, pf_mask 0xc0, 2018-01-04, rev 0x0080, size 98304
sig 0x000906e9, pf_mask 0x2a, 2018-01-04, rev 0x0080, size 98304
sig 0x000906ea, pf_mask 0x22, 2018-01-04, rev 0x0080, size 97280
sig 0x000906eb, pf_mask 0x02, 2018-01-04, rev 0x0080, size 98304
+ Implements IBRS/IBPB support and enhances LFENCE: mitigation
against Spectre (fixes CVE-2017-5715)
+ Very likely fixes several other errata on some of the processors
* supplementary-ucode-CVE-2017-5715.d/: remove.
+ Downgraded microcodes:
sig 0x000406f1, pf_mask 0xef, 2017-03-01, rev 0xb000021, size 26624
sig 0x000506c9, pf_mask 0x03, 2017-03-25, rev 0x002c, size 16384
+ This removes IBRS/IBPB support for these two platforms when compared
with the previous (and unofficial) release, 20171215. We don't know
why Intel declined to include these microcode updates (as well as
several others) in the release.
* source: remove superseded upstream data file: 20171117

libwebkitgtk4-2.18.5-alt1   сборка Yuri N. Sedunov, 2018-01-10


- 2.18.5 (fixed CVE-2017-5753, CVE-2017-5715)

mariadb-10.1.30-alt1.S1   сборка Alexey Shabalin, 2018-01-09


- 10.1.30
- Fixes for the following security vulnerabilities:
+ CVE-2017-15365

firefox-57.0.4-alt1   сборка Alexey Gladkov, 2018-01-06


- New release (57.0.4).
- Fixed:
+ Speculative execution side-channel attack ("Spectre")
+ CVE-2017-7845: Buffer overflow when drawing and validating elements with ANGLE library using Direct 3D 9

firmware-linux-20180104-alt1.1   сборка L.A. Kostis, 2018-01-05


- amd-ucode: Add microcode_amd_fam17h.bin (bsc#1068032 CVE-2017-5715)

firmware-intel-ucode-3-alt1.20171121   сборка L.A. Kostis, 2018-01-04


- Added new CPU microcodes (microcode counterpart of the CVE-2017-5715
kernel mitigation):
+ sig 0x000306f2, pf_mask 0x6f, 2017-11-17, rev 0x003b, size 33792
+ sig 0x000406f1, pf_mask 0xef, 2017-11-18, rev 0xb000025, size 27648
+ sig 0x00050654, pf_mask 0xb7, 2017-11-21, rev 0x200003a, size 27648

proftpd-1.3.5-alt4.rel.e   сборка L.A. Kostis, 2018-01-02


- 1.3.5e release:
+ Backported fix for "AllowChrootSymlinks off" checking each component
for symlinks (CVE-2017-7418).
- minor .spec cleanup.

kernel-image-un-def-4.14.9-alt1   сборка Kernel Bot, 2017-12-25


- v4.14.9 (Fixes: CVE-2017-16995, CVE-2017-16996)

kernel-image-un-def-4.14.8-alt1.1   сборка Kernel Bot, 2017-12-25


- SMACK enabled
- kernel.unprivileged_bpf_disabled set by default (Fixes: CVE-2017-16995, CVE-2017-16996)

adobe-flash-player-ppapi-28-alt1.S1   сборка Sergey V Turchin, 2017-12-25


- new version (ALT#34369)
- security fixes:
CVE-2017-3114, CVE-2017-3112, CVE-2017-11225, CVE-2017-11215,
CVE-2017-11213, CVE-2017-11305

thunderbird-52.5.2-alt1   сборка Andrey Cherepanov, 2017-12-25


- New version (52.5.2)
- Enigmail 1.9.9
- Fixes:
+ CVE-2017-7846 JavaScript Execution via RSS in mailbox:// origin
+ CVE-2017-7847 Local path string can be leaked from RSS feed
+ CVE-2017-7848 RSS Feed vulnerable to new line Injection
+ CVE-2017-7829 Mailsploit part 1: From address with encoded null character is cut off in message header display

kernel-image-std-def-4.9.72-alt1   сборка Kernel Bot, 2017-12-25


- v4.9.72 (Fixes: CVE-2017-16995)

kernel-image-std-def-4.9.71-alt1.1   сборка Kernel Bot, 2017-12-25


- SMACK enabled
- kernel.unprivileged_bpf_disabled set by default (Fixes: CVE-2017-16995)

libwebkitgtk4-2.18.4-alt1   сборка Yuri N. Sedunov, 2017-12-20


- 2.18.4 (fixed CVE-2017-13866, CVE-2017-13870, CVE-2017-7156, CVE-2017-13856)

kernel-image-std-pae-4.4.106-alt1   сборка Kernel Bot, 2017-12-17


- v4.4.106 (Fixes: CVE-2017-0861, CVE-2017-1000407)

chromium-63.0.3239.108-alt1   сборка Alexey Gladkov, 2017-12-16


- New version (63.0.3239.108).
- Security fixes:
- CVE-2017-15429: UXSS in V8.

kernel-image-un-def-4.14.6-alt1   сборка Kernel Bot, 2017-12-15


- v4.14.6 (Fixes: CVE-2017-0861, CVE-2017-1000407)

kernel-image-std-def-4.9.69-alt1   сборка Kernel Bot, 2017-12-15


- v4.9.69 (Fixes: CVE-2017-0861, CVE-2017-1000407)

firefox-esr-52.5.2-alt1   сборка Andrey Cherepanov, 2017-12-10


- New ESR version (52.5.2)
- Fixes:
+ CVE-2017-7843 Web worker in Private Browsing mode can write IndexedDB data
- Build with DBUS support (ALT #34302)
 
дизайн и разработка: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
текущий майнтейнер: Michael Shigorin