ALT Linux Team

Branch sisyphus update on 2020-10-23

2020-10-23

ALT-BU-2020-4103-1

Branch sisyphus update bulletin.

ALT-PU-2020-3100-1

Package eigen3 updated to version 3.3.8-alt3 for branch sisyphus in task 260215.

Closed bugs

Bug #39109

Модули cmake зачем-то переехали в каталог Modules

ALT-PU-2020-3101-1

Package pstotext updated to version 1.9-alt3 for branch sisyphus in task 260205.

Closed vulnerabilities

Published: 2005-08-10
Modified: 2025-04-03

CVE-2005-2536

pstotext before 1.8g does not properly use the "-dSAFER" option when calling Ghostscript to extract plain text from PostScript and PDF files, which allows remote attackers to execute arbitrary commands via a malicious PostScript file.

Severity: HIGH (7.5) Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
References:
Published: 2006-11-26
Modified: 2025-04-09

CVE-2006-5869

pstotext before 1.9 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a file name.

Severity: MEDIUM (5.1) Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
References:

ALT-PU-2020-3102-1

Package nvidia_glx_common updated to version 450.80.02-alt231 for branch sisyphus in task 260219.

Closed bugs

Bug #39108

guess-drm добавляет лишние модули

ALT-PU-2020-3103-1

Package xli updated to version 1.17.0-alt9 for branch sisyphus in task 260221.

Closed vulnerabilities

Published: 2005-10-07
Modified: 2025-04-03

CVE-2005-3178

Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assisted attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations.

Severity: MEDIUM (5.1) Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.2
Back to top