ALT Linux Team

Branch sisyphus update on 2018-09-21

2018-09-21

ALT-BU-2018-3475-1

Branch sisyphus update bulletin.

ALT-PU-2018-2350-1

Package kazam updated to version 1.4.5-alt3 for branch sisyphus in task 213340.

Closed bugs

Bug #35419

[PATCH] Исправление локали в Kazam

ALT-PU-2018-2354-1

Package libwebkitgtk4 updated to version 2.22.1-alt1 for branch sisyphus in task 213372.

Closed vulnerabilities

Published: 2019-01-11
Modified: 2024-11-21

CVE-2018-4212

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:

ALT-PU-2018-2355-1

Package kernel-image-un-def updated to version 4.18.9-alt1 for branch sisyphus in task 213363.

Closed vulnerabilities

Published: 2018-09-13

BDU:2018-01144

Уязвимость функции vmacache_flush_all() ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии

Severity: HIGH (7.0) Vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2018-09-19
Modified: 2024-11-21

CVE-2018-17182

An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top