ALT-BU-2018-3606-1
Branch sisyphus update bulletin.
Closed bugs
прыгает полоса прокрутки
Closed vulnerabilities
Modified: 2024-11-21
CVE-2016-4425
Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service (deep recursion, stack consumption, and crash) via crafted JSON data.
- DSA-3577
- DSA-3577
- [oss-security] 20160501 CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160501 CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160502 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160502 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160503 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160503 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- https://github.com/akheron/jansson/issues/282
- https://github.com/akheron/jansson/issues/282
- https://github.com/akheron/jansson/pull/284
- https://github.com/akheron/jansson/pull/284
- https://github.com/akheron/jansson/pull/284/commits/64ce0ad3731ebd77e02897b07920eadd0e2cc318
- https://github.com/akheron/jansson/pull/284/commits/64ce0ad3731ebd77e02897b07920eadd0e2cc318
Closed vulnerabilities
BDU:2022-05859
Уязвимость функции git_delta_apply компонента delta.c реализации методов Git на языке C Libgit2, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2018-10887
A flaw was found in libgit2 before version 0.27.3. It has been discovered that an unexpected sign extension in git_delta_apply function in delta.c file may lead to an integer overflow which in turn leads to an out of bound read, allowing to read before the base object. An attacker may use this flaw to leak memory addresses or cause a Denial of Service.
- https://bugzilla.redhat.com/show_bug.cgi?id=1598021
- https://bugzilla.redhat.com/show_bug.cgi?id=1598021
- https://github.com/libgit2/libgit2/commit/3f461902dc1072acb8b7607ee65d0a0458ffac2a
- https://github.com/libgit2/libgit2/commit/3f461902dc1072acb8b7607ee65d0a0458ffac2a
- https://github.com/libgit2/libgit2/commit/c1577110467b701dcbcf9439ac225ea851b47d22
- https://github.com/libgit2/libgit2/commit/c1577110467b701dcbcf9439ac225ea851b47d22
- https://github.com/libgit2/libgit2/releases/tag/v0.27.3
- https://github.com/libgit2/libgit2/releases/tag/v0.27.3
- [debian-lts-announce] 20180825 [SECURITY] [DLA 1477-1] libgit2 security update
- [debian-lts-announce] 20180825 [SECURITY] [DLA 1477-1] libgit2 security update
- [debian-lts-announce] 20220321 [SECURITY] [DLA 2936-1] libgit2 security update
- [debian-lts-announce] 20220321 [SECURITY] [DLA 2936-1] libgit2 security update
Modified: 2024-11-21
CVE-2018-10888
A flaw was found in libgit2 before version 0.27.3. A missing check in git_delta_apply function in delta.c file, may lead to an out-of-bound read while reading a binary delta file. An attacker may use this flaw to cause a Denial of Service.
- https://bugzilla.redhat.com/show_bug.cgi?id=1598024
- https://bugzilla.redhat.com/show_bug.cgi?id=1598024
- https://github.com/libgit2/libgit2/commit/9844d38bed10e9ff17174434b3421b227ae710f3
- https://github.com/libgit2/libgit2/commit/9844d38bed10e9ff17174434b3421b227ae710f3
- https://github.com/libgit2/libgit2/releases/tag/v0.27.3
- https://github.com/libgit2/libgit2/releases/tag/v0.27.3
- [debian-lts-announce] 20180825 [SECURITY] [DLA 1477-1] libgit2 security update
- [debian-lts-announce] 20180825 [SECURITY] [DLA 1477-1] libgit2 security update
- [debian-lts-announce] 20220321 [SECURITY] [DLA 2936-1] libgit2 security update
- [debian-lts-announce] 20220321 [SECURITY] [DLA 2936-1] libgit2 security update
Closed bugs
Version: 3.18.9
Зависит от Qt4
Package goldendict updated to version 1.5.0-alt1.git36a1881 for branch sisyphus in task 216945.
Closed bugs
использует шрифты с неполными глифами
Can't run in KDE4
Локализация GenericName на русский язык в файле .desktop
Собрать новую версию goldendict 1.5.0
в goldendict проблемы с wikipedia