ALT-BU-2017-3286-1
Branch p8 update bulletin.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2016-1567
chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."
- http://chrony.tuxfamily.org/news.html#_20_jan_2016_chrony_2_2_1_and_chrony_1_31_2_released
- http://chrony.tuxfamily.org/news.html#_20_jan_2016_chrony_2_2_1_and_chrony_1_31_2_released
- FEDORA-2016-6f783d1768
- FEDORA-2016-6f783d1768
- FEDORA-2016-6a0b0ab775
- FEDORA-2016-6a0b0ab775
- http://www.talosintel.com/reports/TALOS-2016-0071/
- http://www.talosintel.com/reports/TALOS-2016-0071/
Package postgresql9.6-1C updated to version 9.6.4-alt0.M80P.1 for branch p8 in task 186870.
Closed vulnerabilities
BDU:2017-02037
Уязвимость системы управления базами данных PostgreSQL, вызванная недостатками процедуры авторизации, позволяющая нарушителю получить пароль
Modified: 2024-11-21
CVE-2017-7547
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Package postgresql9.6 updated to version 9.6.4-alt0.M80P.1 for branch p8 in task 186870.
Closed vulnerabilities
BDU:2017-02037
Уязвимость системы управления базами данных PostgreSQL, вызванная недостатками процедуры авторизации, позволяющая нарушителю получить пароль
Modified: 2024-11-21
CVE-2017-7547
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Package postgresql9.5 updated to version 9.5.8-alt0.M80P.1 for branch p8 in task 186870.
Closed vulnerabilities
BDU:2017-02037
Уязвимость системы управления базами данных PostgreSQL, вызванная недостатками процедуры авторизации, позволяющая нарушителю получить пароль
Modified: 2024-11-21
CVE-2017-7547
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Package postgresql9.4 updated to version 9.4.13-alt0.M80P.1 for branch p8 in task 186870.
Closed vulnerabilities
BDU:2017-02037
Уязвимость системы управления базами данных PostgreSQL, вызванная недостатками процедуры авторизации, позволяющая нарушителю получить пароль
Modified: 2024-11-21
CVE-2017-7547
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Package postgresql9.3 updated to version 9.3.18-alt0.M80P.1 for branch p8 in task 186870.
Closed vulnerabilities
BDU:2017-02037
Уязвимость системы управления базами данных PostgreSQL, вызванная недостатками процедуры авторизации, позволяющая нарушителю получить пароль
Modified: 2024-11-21
CVE-2017-7547
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Package pve-manager updated to version 5.0.24-alt4.M80P.1 for branch p8 in task 186899.
Closed bugs
Не работает настройка резервного копирования контейнера
Closed bugs
Просьба обновить до 6.3