Branch sisyphus update bulletin.

Package roundcube updated to version 1.2.4-alt1 for branch sisyphus in task 180326.

Published: 2017-03-12
Modified: 2024-11-21

CVE-2017-6820

rcube_utils.php in Roundcube before 1.1.8 and 1.2.x before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets (CSS) token sequence within an SVG element.

Severity: MEDIUM (6.1) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References:

Package tinc updated to version 1.0.31-alt1 for branch sisyphus in task 180462.

Published: 2018-10-11
Modified: 2024-11-21

CVE-2018-16737

tinc before 1.0.30 has a broken authentication protocol, without even a partial mitigation.

Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

References:

Package wine-mono updated to version 4.7.0-alt1 for branch sisyphus in task 180472.

Доступна версия 4.7.0

Version: 2.1.0

Branch sisyphus update on 2017-03-19

ALT-BU-2017-2995-1

ALT-PU-2017-1302-1

Closed vulnerabilities

CVE-2017-6820

ALT-PU-2017-1303-1

Closed vulnerabilities

CVE-2018-16737

ALT-PU-2017-1304-1

Closed bugs

Bug #33252