ALT-BU-2015-2791-3

Branch sisyphus update bulletin.

Package logrotate updated to version 3.9.1-alt1 for branch sisyphus in task 154847.

Уязвимости операционной системы Red Hat Enterprise Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Уязвимости операционной системы Gentoo Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place.

Severity: LOW (1.9)Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

References:

The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name.

Severity: MEDIUM (6.9)Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

References:

The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service (rotation outage) via a (1) \n (newline) or (2) \ (backslash) character in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name.

Severity: LOW (1.9)Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P

References:

поведение logrotate не соответствует man-странице

Множественные уязвимости: CVE-2011-1098, CVE-2011-1154, CVE-2011-1155

Ломает работу logrotate

Package curl updated to version 7.46.0-alt2 for branch sisyphus in task 154851.

Build with HTTP/2 support enabled

Package wget updated to version 1.17.1-alt1 for branch sisyphus in task 154852.

Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to bypass intended access list restrictions by keeping an HTTP connection open.

Severity: MEDIUM (6.8)Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: HIGH (8.1)Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package sane updated to version 1.0.25-alt1 for branch sisyphus in task 154856.

SANE-Backends-1.0.25

Package cpio updated to version 2.12-alt1 for branch sisyphus in task 154859.

Уязвимость утилиты архивирования Сpio, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (4.3)Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

References:

Heap-based buffer overflow in the process_copy_in function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive.

Severity: MEDIUM (5.0)Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

References:

cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.

Severity: LOW (1.9)Vector: AV:L/AC:M/Au:N/C:N/I:P/A:N

References:

The cpio_safer_name_suffix function in util.c in cpio 2.11 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted cpio file.

Severity: MEDIUM (4.3)Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Severity: MEDIUM (6.5)Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

Version: 2.1.2

Branch sisyphus update on 2015-12-14

ALT-BU-2015-2791-3

ALT-PU-2015-2093-2

Closed vulnerabilities

BDU:2015-06014

BDU:2015-06014

BDU:2015-06014

BDU:2015-06015

BDU:2015-06015

BDU:2015-06015

BDU:2015-09654

BDU:2015-09654

BDU:2015-09654

CVE-2011-1098

CVE-2011-1154

CVE-2011-1155

Closed bugs

Bug #12593

Bug #29681

Bug #31616

ALT-PU-2015-2094-1

Closed bugs

Bug #31617

ALT-PU-2015-2095-1

Closed vulnerabilities

CVE-2016-7098

ALT-PU-2015-2096-1

Closed bugs

Bug #31327

ALT-PU-2015-2097-1

Closed vulnerabilities

BDU:2016-00608

CVE-2014-9112

CVE-2015-1197

CVE-2016-2037