2018-11-02
ALT-BU-2018-3547-1
Branch sisyphus update bulletin.
Package freeswitch updated to version 1.8.2-alt3 for branch sisyphus in task 216009.
Closed bugs
Не упакован switch_version.h
Package NetworkManager updated to version 1.14.5-alt1.gitba83251bba87 for branch sisyphus in task 216025.
Closed vulnerabilities
Published: 2018-10-14
BDU:2018-01289
Уязвимость функции dhcp6_option_append_ia() демона Systemd, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
Severity: HIGH (8.8)
Vector: AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2018-10-26
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-15688
A buffer overflow vulnerability in the dhcp6 client of systemd allows a malicious dhcp6 server to overwrite heap memory in systemd-networkd. Affected releases are systemd: versions up to and including 239.
Severity: HIGH (8.8)
Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- 105745
- 105745
- RHBA-2019:0327
- RHBA-2019:0327
- RHSA-2018:3665
- RHSA-2018:3665
- RHSA-2019:0049
- RHSA-2019:0049
- https://github.com/systemd/systemd/pull/10518
- https://github.com/systemd/systemd/pull/10518
- [debian-lts-announce] 20181119 [SECURITY] [DLA 1580-1] systemd security update
- [debian-lts-announce] 20181119 [SECURITY] [DLA 1580-1] systemd security update
- GLSA-201810-10
- GLSA-201810-10
- USN-3806-1
- USN-3806-1
- USN-3807-1
- USN-3807-1