Branch sisyphus update bulletin.

Package mc updated to version 4.8.14-alt1 for branch sisyphus in task 142226.

MC собран без поддержки SMB

Package tor updated to version 0.2.5.11-alt1 for branch sisyphus in task 142271.

Published: 2020-01-24
Modified: 2024-11-21

CVE-2015-2688

buf_pullup in Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle unexpected arrival times of buffers with invalid layouts, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via crafted packets.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2020-01-24
Modified: 2024-11-21

CVE-2015-2689

Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle pending-connection resolve states during periods of high DNS load, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via crafted packets.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package kde4-plasma-nm updated to version 0.9.3.5-alt1 for branch sisyphus in task 142275.

Обновить до 0.9.3.5

Version: 2.1.0

Branch sisyphus update on 2015-03-26

ALT-BU-2015-2373-1

ALT-PU-2015-1312-1

Closed bugs

Bug #30649

ALT-PU-2015-1317-1

Closed vulnerabilities

CVE-2015-2688

CVE-2015-2689

ALT-PU-2015-1319-1

Closed bugs

Bug #30861