ALT Linux Team

Branch p9 update on 2020-10-21

2020-10-21

ALT-BU-2020-4098-1

Branch p9 update bulletin.

ALT-PU-2020-3082-1

Package vkd3d updated to version 1.2-alt1 for branch p9 in task 259141.

Closed bugs

Bug #39002

Vkd3d 1.2 Released

ALT-PU-2020-3083-1

Package wine-vanilla updated to version 5.19-alt1 for branch p9 in task 259141.

Closed bugs

Bug #38810

Добавить поддержку vulkan

ALT-PU-2020-3084-1

Package wine updated to version 5.19.1-alt1 for branch p9 in task 259141.

Closed bugs

Bug #34281

Некорректное описание пакета

Bug #38810

Добавить поддержку vulkan

ALT-PU-2020-3085-1

Package rpm-build-altlinux-compat updated to version 2.2.2-alt1 for branch p9 in task 259346.

Closed bugs

Bug #39046

Empty %_distro_version in p9_mipsel

ALT-PU-2020-3086-1

Package eepm updated to version 3.3.4-alt1 for branch p9 in task 259346.

Closed bugs

Bug #39014

/etc/eepm/repack.d/zoom.sh: строка 7: return: возврат можно выполнить только из функции или исходного скрипта

ALT-PU-2020-3087-1

Package perl-Template updated to version 3.009-alt2 for branch p9 in task 260055.

Closed bugs

Bug #38635

В пакет включены fixes for ALT Linux Bugzilla, которые ломают кодировку

ALT-PU-2020-3088-1

Package libaom updated to version 2.0.0-alt1 for branch p9 in task 259826.

Closed bugs

Bug #37096

в pkg-config версия не соответствует версии библиотеки

ALT-PU-2020-3089-1

Package inkscape updated to version 1.0.1-alt2 for branch p9 in task 260083.

Closed bugs

Bug #39052

Ошибка при запуске расширений

ALT-PU-2020-3090-1

Package freecol updated to version 0.11.6-alt2 for branch p9 in task 260092.

Closed vulnerabilities

Published: 2018-12-20
Modified: 2024-11-21

CVE-2018-1000825

FreeCol version <= nightly-2018-08-22 contains a XML External Entity (XXE) vulnerability in FreeColXMLReader parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via Freecol file.

Severity: CRITICAL (10.0) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
References:

ALT-PU-2020-3091-1

Package feh updated to version 3.5-alt1 for branch p9 in task 260102.

Closed vulnerabilities

Published: 2017-04-14
Modified: 2024-11-21

CVE-2017-7875

In wallpaper.c in feh before v2.18.3, if a malicious client pretends to be the E17 window manager, it is possible to trigger an out-of-boundary heap write while receiving an IPC message. An integer overflow leads to a buffer overflow and/or a double free.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:

ALT-PU-2020-3092-1

Package libid3tag updated to version 0.15.1b-alt9 for branch p9 in task 260108.

Closed vulnerabilities

Published: 2018-02-21
Modified: 2018-03-19

CVE-2004-2779

id3_utf16_deserialize() in utf16.c in libid3tag through 0.15.1b misparses ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until an OOM condition is reached, leading to denial-of-service (DoS).

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top