2017-11-18
ALT-BU-2017-3505-1
Branch sisyphus update bulletin.
Closed vulnerabilities
Published: 2018-08-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2017-15398
A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- 101692
- 101692
- RHSA-2017:3151
- RHSA-2017:3151
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://crbug.com/777728
- https://crbug.com/777728
- GLSA-201711-02
- GLSA-201711-02
- DSA-4024
- DSA-4024
Published: 2018-08-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2017-15399
A use after free in V8 in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Severity: HIGH (8.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
- 101692
- 101692
- RHSA-2017:3151
- RHSA-2017:3151
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://crbug.com/776677
- https://crbug.com/776677
- GLSA-201711-02
- GLSA-201711-02
- DSA-4024
- DSA-4024
Package docbook-style-xsl updated to version 1.78.1-alt3 for branch sisyphus in task 194752.
Closed bugs
При сборке man-страницы для smb.conf проявляется ошибка бесконечной рекурсии
Package fonts-ttf-google-noto updated to version 20161022-alt1_4 for branch sisyphus in task 194774.
Closed bugs
Fontconfig error: mismatched tag