Branch p8 update bulletin.

Package thunar updated to version 1.6.15-alt0.M80P.1 for branch p8 in task 203646.

Published: 2018-10-20
Modified: 2024-11-21

CVE-2018-18398

Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey input method for file searches within File Manager, leading to an out-of-bounds read and SEGV. This could potentially be exploited by an arbitrary local user who creates files in /tmp before the victim uses this input method.

Severity: MEDIUM (4.7) Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

References:

https://0xd0ff9.wordpress.com/2018/10/18/cve-2018-18398/
https://0xd0ff9.wordpress.com/2018/10/18/cve-2018-18398/

Package icewm-startup updated to version 0.19-alt1 for branch p8 in task 203891.

Новый пакет icewm-startup-spacefm

Package spacefm updated to version 1.0.6-alt1.M80P.1 for branch p8 in task 203655.

Обновить до версии 1.0.6

Version: 2.1.0

Branch p8 update on 2018-04-13

ALT-BU-2018-3196-1

ALT-PU-2018-1579-1

Closed vulnerabilities

CVE-2018-18398

ALT-PU-2018-1581-1

Closed bugs

Bug #34794

ALT-PU-2018-1582-1

Closed bugs

Bug #34754