ALT Linux Team

Branch sisyphus update on 2019-04-06

2019-04-06

ALT-BU-2019-3590-1

Branch sisyphus update bulletin.

ALT-PU-2019-1590-1

Package wget updated to version 1.20.2-alt1 for branch sisyphus in task 226612.

Closed vulnerabilities

Published: 2019-04-03

BDU:2019-01402

Уязвимость консольной утилиты для загрузки файлов Wget, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

Severity: HIGH (8.8) Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2019-05-17
Modified: 2024-11-21

CVE-2019-5953

Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code via unspecified vectors.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:

Closed bugs

Bug #36519

Обновить wget

ALT-PU-2019-1592-1

Package firewalld updated to version 0.6.3-alt2 for branch sisyphus in task 226640.

Closed bugs

Bug #36502

Не работает после обновления

ALT-PU-2019-1594-1

Package mongo-tools updated to version 4.0.8-alt1 for branch sisyphus in task 226659.

Closed bugs

Bug #36520

Сломалась сборка mongo-tools

ALT-PU-2019-1595-1

Package cacti updated to version 1.2.3-alt1 for branch sisyphus in task 226664.

Closed vulnerabilities

Published: 2019-04-09
Modified: 2024-11-21

CVE-2019-11025

In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to XSS.

Severity: MEDIUM (5.4) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top